Skip to main content

Proof-Of-Possession Semantics for JSON Web Tokens (JWTs)

Document Type Replaced Internet-Draft (individual)
Authors Michael Jones , John Bradley , Hannes Tschofenig
Last updated 2014-07-15 (Latest revision 2014-07-04)
Replaced by RFC 7800
Stream Internet Engineering Task Force (IETF)
Intended RFC status Proposed Standard
Expired & archived
Stream WG state (None)
Document shepherd (None)
IESG IESG state Replaced by draft-ietf-oauth-proof-of-possession
Consensus boilerplate Unknown
Telechat date (None)
Responsible AD Kathleen Moriarty
Send notices to
This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at:


This specification defines how to express a declaration in a JSON Web Token (JWT) that the presenter of the JWT possesses a particular key and that the recipient can cryptographically confirm proof-of- possession of the key by the presenter. This property is also sometimes described as the presenter being a holder-of-key.


Michael Jones
John Bradley
Hannes Tschofenig

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)