Title
OAuth 2.0 HTTP Message Signatures Profile
Description
The OAuth 2.0 framework provides methods for Clients to get delegated access tokens as bearer tokens from an Authorization Server for accessing protected resources. The OAuth 2.0 HTTP Message Signatures Profile defines an access token type that binds the access token to a cryptographic key known to the Client1. The Client uses HTTP Message Signatures2to digitally sign requests using its key, thereby proving Proof-of-Possession to present the access token to the Resource Server.

Reference document

Org
FMN
Pubnum
Date
2022-12-02
Version
Title
Proposed FMN Spiral 5 Specification

Taxonomy

Standards

Obligation: NONE, Lifecycle: CANDIDATE

Service profile OAuth 2.0 HTTP Message Signatures Profile does not refer to any standard.

Guidance

Status

URI

History

Flag Date RFC Version
added 2023-01-23 14-32 15
UUID
58fe10dd-0b05-44c8-a3bb-6d2c608a825a

Utilization

This profile is used by the following profiles:

Last updated on Thu, 21 Mar 2024 15:51:28 UTC
This page is work in progress