Hello everyone. Is it possible to relax the requirement to sign the claims set if an authenticated encryption mode with prior shared secrets is used? Eg. https://tools.ietf.org/html/draft-madden-jose-ecdh-1pu-02. This would reduce the size of the request object substantially.
Regards, George Aristy
_______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
