Proof-Of-Possession Semantics for JSON Web Tokens (JWTs)

Document Type Replaced Internet-Draft (individual)
Authors Michael Jones  , John Bradley  , Hannes Tschofenig 
Last updated 2014-07-15 (latest revision 2014-07-04)
Replaced by RFC 7800
Stream IETF
Intended RFC status Proposed Standard
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream WG state (None)
Document shepherd No shepherd assigned
IESG IESG state Replaced by draft-ietf-oauth-proof-of-possession
Consensus Boilerplate Unknown
Telechat date
Responsible AD Kathleen Moriarty
Send notices to

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This specification defines how to express a declaration in a JSON Web Token (JWT) that the presenter of the JWT possesses a particular key and that the recipient can cryptographically confirm proof-of- possession of the key by the presenter. This property is also sometimes described as the presenter being a holder-of-key.


Michael Jones (
John Bradley (
Hannes Tschofenig (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)