Hannes, thanks for drafting this, couple of comments: 1. HOK is one of Proof of Possession methods, should we consider others? 2. This seems just to handle asymmetric keys, need to also handle symmetric keys
-----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Hannes Tschofenig Sent: Monday, July 09, 2012 11:15 AM To: OAuth WG Subject: [OAUTH-WG] Holder-of-the-Key for OAuth Hi guys, today I submitted a short document that illustrates the concept of holder-of-the-key for OAuth. Here is the document: https://datatracker.ietf.org/doc/draft-tschofenig-oauth-hotk Your feedback is welcome Ciao Hannes _______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth _______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
