{
  "@context": "https://schema.org",
  "@type": "CreativeWork",
  "name": "OAuth 2.0 DPoP (Proof-of-Possession)",
  "dateModified": "2026-06-02",
  "spec": "RFC 9449",
  "header": "DPoP: <jwt>",
  "jwtClaims": [
    "htm",
    "htu",
    "iat",
    "jti",
    "ath"
  ],
  "signingAlg": [
    "ES256",
    "EdDSA",
    "RS256"
  ],
  "tokenBinding": "Access tokens bound to client public key via jkt thumbprint",
  "benefits": [
    "prevents token replay",
    "sender-constrained tokens",
    "no shared secret leakage"
  ]
}