[OpenID] dynamic registration

[Janusz Ulanowski]

Hi,
I've just read spec 
http://openid.net/specs/openid-connect-registration-1_0.html
And it looks like there is not option to some kind of validation like 
verify if requesting client is a owner of of keys jwks_uri
Maybe such request could be signed and then validated by auth server - 
if not then how could I verify if client is in my predefined trust group 
(similar to SAML Federaition)?
thanks.
-- 
janusz