A new Request for Comments is now available in online RFC libraries.
BCP 225
RFC 8725
Title: JSON Web Token Best Current Practices
Author: Y. Sheffer,
D. Hardt,
M. Jones
Status: Best Current Practice
Stream: IETF
Date: February 2020
Mailbox: yaronf.i...@gmail.com,
dick.ha...@gmail.com,
m...@microsoft.com
Pages: 13
Updates: RFC 7519
See Also: BCP 225
I-D Tag: draft-ietf-oauth-jwt-bcp-07.txt
URL: https://www.rfc-editor.org/info/rfc8725
DOI: 10.17487/RFC8725
JSON Web Tokens, also known as JWTs, are URL-safe JSON-based security
tokens that contain a set of claims that can be signed and/or
encrypted. JWTs are being widely used and deployed as a simple
security token format in numerous protocols and applications, both in
the area of digital identity and in other application areas. This
Best Current Practices document updates RFC 7519 to provide
actionable guidance leading to secure implementation and deployment
of JWTs.
This document is a product of the Web Authorization Protocol Working Group of
the IETF.
BCP: This document specifies an Internet Best Current Practices for the
Internet Community, and requests discussion and suggestions for
improvements. Distribution of this memo is unlimited.
This announcement is sent to the IETF-Announce and rfc-dist lists.
To subscribe or unsubscribe, see
https://www.ietf.org/mailman/listinfo/ietf-announce
https://mailman.rfc-editor.org/mailman/listinfo/rfc-dist
For searching the RFC series, see https://www.rfc-editor.org/search
For downloading RFCs, see https://www.rfc-editor.org/retrieve/bulk
Requests for special distribution should be addressed to either the
author of the RFC in question, or to rfc-edi...@rfc-editor.org. Unless
specifically noted otherwise on the RFC itself, all RFCs are for
unlimited distribution.
The RFC Editor Team
Association Management Solutions, LLC
_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth
