[Openid-specs-ab] Issue #1277: Section 2.2 Binding Methods (openid/connect)
Nat
issues-reply at bitbucket.org
Thu Aug 12 15:48:03 UTC 2021
New issue 1277: Section 2.2 Binding Methods
https://bitbucket.org/openid/connect/issues/1277/section-22-binding-methods
Nat Sakimura:
The draft says:
> Public-private key pairs are used by a requesting Credential Holder to establish a means of binding to the resulting credential. A Credential Holder making a Credential Request to a Credential Issuer must prove control over this binding mechanism during the request, this is accomplished through the extended usage of a signed request defined in OpenID Connect Core.
Does this mean the holder can prove control using a signed authentication request? If so, why isn’t the credential provided in the token response?
More information about the Openid-specs-ab
mailing list