[Openid-specs-fapi] Fwd: OpenID Connect Token Binding Specification Updated
bcampbell at pingidentity.com
Thu Jul 5 14:44:20 UTC 2018
Work related to OpenID Connect, which may be of interest to some on this
---------- Forwarded message ----------
From: Mike Jones <Michael.Jones at microsoft.com>
Date: Sun, Jul 1, 2018 at 5:30 PM
Subject: OpenID Connect Token Binding Specification Updated
To: "openid-specs-eap at lists.openid.net" <openid-specs-eap at lists.openid.net>
Cc: "bcampbell at pingidentity.com" <bcampbell at pingidentity.com>
The OpenID Connect Token Bound Authentication specification has been
updated in response to developer feedback and in anticipation of the IETF
Token Binding specifications finishing. Changes were:
- Adjusted the metadata to indicate supported confirmation method hash
algorithms for Token Binding IDs in ID Tokens.
- Updated references for draft-ietf-tokbind-protocol to -19,
draft-ietf-tokbind-https to -17, draft-ietf-oauth-token-binding to -07, and
draft-ietf-oauth-discovery to -10.
- Explicitly stated that the base64url encoding of the “tbh” value
doesn't include any trailing pad characters, line breaks, whitespace, etc.
(The representation of the Token Binding ID in the ID Token is unchanged.)
Thanks to Brian Campbell <https://twitter.com/__b_c> for doing the editing
for this draft.
The specification is available at:
P.S. This notice was also posted at http://self-issued.info/?p=1888 and as
_CONFIDENTIALITY NOTICE: This email may contain confidential and privileged
material for the sole use of the intended recipient(s). Any review, use,
distribution or disclosure by others is strictly prohibited. If you have
received this communication in error, please notify the sender immediately
by e-mail and delete the message and any file attachments from your
computer. Thank you._
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Openid-specs-fapi