Justin Richer
Pronouns: he/him
Justin Richer is a security architect, software engineer, standards editor, and systems designer with over two decades of industry experience. He is the lead author of the book "OAuth2 In Action" and contributor to OAuth 2.0 and OpenID Connect. Justin is the editor of a variety of standards including GNAP, HTTP Message Signatures (RFC9421), Vectors of Trust (RFC8485), and OAuth extensions for dynamic registration (RFC7591, RFC7592), token introspection (RFC7662), and rich authorization requests (RFC9396). Justin is a co-author to US government standards NIST SP 800-63, FIPS201, and NIST SP 800-217.
Roles
| Role | Group | |
|---|---|---|
| Chair | Workload Identity in Multi System Environments (wimse) | jricher@mit.edu |
External Resources
| Name | Value |
|---|---|
| GitHub Username | jricher |
| Additional Web Page | https://bspk.io/ |
RFCs (6)
| RFC | Date | Title | Cited by |
|---|---|---|---|
| RFC 7591 | Jul 2015 | OAuth 2.0 Dynamic Client Registration Protocol | 12 RFCs |
| RFC 7592 | Jul 2015 | OAuth 2.0 Dynamic Client Registration Management Protocol | 1 RFC |
| RFC 7662 | Oct 2015 | OAuth 2.0 Token Introspection | 11 RFCs |
| RFC 8485 | Oct 2018 | Vectors of Trust | |
| RFC 9396 | May 2023 | OAuth 2.0 Rich Authorization Requests | |
| RFC 9421 | Feb 2024 | HTTP Message Signatures | 1 RFC |
Active Internet-Drafts (2)
Expired Internet-Drafts (24)
- draft-richer-wimse-token-container
- draft-gilman-wimse-use-cases
- draft-richer-oauth-httpsig
- draft-richer-oauth-json-request
- draft-maler-oauth-umafedauthz
- draft-maler-oauth-umagrant
- draft-bradley-oauth-stateless-client-id
- draft-ietf-oauth-signed-http-request
- draft-ietf-oauth-pop-architecture
- draft-ietf-oauth-dyn-reg-metadata
- draft-ietf-oauth-v2-http-mac
- draft-richer-oauth-dyn-reg-management
- draft-richer-oauth-chain
- draft-richer-oauth-xml
- draft-richer-oauth-instance