I don’t have any deployments yet, but am changing companies in July and can see
some future use cases for POP CWT around Web Authentication.
POP for JWT is taking off and Ping has implementations of that.
It would be beneficial if we could maintain the same confirmation “cnf”
semantic between J
So, I have finally started to put the tip of my foot into IoT world and so
I have no actual product or service, but PoP keys for CWT should be useful
for severely constrained devices. We have seen so many instances of token
interception and replay in IoT sphere. PoP keys in CBOR should help
mitigat
