FWIW Rifaat, Roman and I have a discussion on how to advance the
proof-of-possession token discussion. Expect some action early 2020 as well.
There is a lot happening in the OAuth working group at the same time...
From: Brian Campbell
Sent: Monday, December 23, 2019 10:19 PM
To: Hannes Tschofen
Yes and some are wrong:
3.1.1. Authorization Code Grant
AS metadata ([!@RFC8418])
Where RFC8418 is "Use of the Elliptic Curve Diffie-Hellman Key Agreement
Algorithm with X25519 and X448 in the Cryptographic Message Syntax (CMS)"
and has no Metadata entries.
Happy Holiday Jitter?
--
-jim
Jim
