%% You should probably cite draft-ietf-oauth-rfc7523bis-10 instead of this revision.
@techreport{ietf-oauth-rfc7523bis-06,
    number =    {draft-ietf-oauth-rfc7523bis-06},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-ietf-oauth-rfc7523bis/06/},
    author =    {Michael B. Jones and Brian Campbell and Chuck Mortimore and Filip Skokan},
    title =     {{Updates to OAuth 2.0 JSON Web Token (JWT) Client Authentication and Assertion-Based Authorization Grants}},
    pagetotal = 15,
    year =      2026,
    month =     mar,
    day =       2,
    abstract =  {This specification updates the requirements for audience values in OAuth 2.0 Client Assertion Authentication and Assertion-based Authorization Grants to address a security vulnerability identified in the previous requirements for those audience values in multiple OAuth 2.0 specifications.},
}