| openid-connect-key-binding | October 2025 | |
| Hardt & Heilman | Standards Track | [Page] |
OpenID Key Binding specifies how to bind a public key to an OpenID Connect ID Token using mechanisms defined in [RFC9449], OAuth 2.0 Demonstrating Proof of Possession (DPoP).¶
OpenID Connect is a protocol that enables a Relying Party (RP) to delegate authentication and obtain identity claims to an OpenID Connect Provider (OP).¶
When authenticating with OpenID Connect, an RP provides a nonce in its authentication request. The ID Token signed and returned by the OP contains the nonce and claims about the user. When verifying the ID Token, the RP confirms it contains the nonce, binding the session that made the request to the response.¶
It is common for an RP to be composed of multiple components such as a RP authenticating component that obtains the ID Token from the OP and an RP consuming component which checks the ID Token presented to it by the authenticating component. When the RP authenticating component wants to prove to an RP consuming component that it has authenticated a user, it may present the ID Token as a bearer token. However, bearer tokens are vulnerable to theft and replay attacks - if an attacker obtains the ID Token, they can impersonate the authenticated user.¶
By binding a cryptographic key to the ID Token, the RP authenticating component can prove to RP consuming components not only that a user has been authenticated, but that the RP authenticating component itself was the original recipient of that authentication. This transforms the ID Token from a vulnerable bearer token into a proof-of-possession token that provides stronger security guarantees.¶
The RP may also prove possession of the bound key when presenting an ID Token back to the OP.¶
Use cases include: a mobile app that has received an ID Token exchanging the ID Token with a proof of possession with a first party authorization service for an access token; an instance of a peer to peer application such as video conferencing where one instance of the application sends the ID Token with a proof of possession to a second instance to prove which user is operating the first instance.¶
This specification profiles OpenID Connect 1.0 [OpenID.Core], RFC8628 - OAuth 2.0 Device Authorization Grant [RFC8626], and RFC9449 - OAuth 2.0 Demonstrating Proof of Possession (DPoP) [RFC9449] to enable cryptographically bound ID Tokens that resist theft and replay attacks while maintaining compatibility with existing OpenID Connect infrastructure.¶
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in [RFC2119].¶
In the .txt version of this specification, values are quoted to indicate that they are to be taken literally. When using these values in protocol messages, the quotes MUST NOT be used as part of the value. In the HTML version of this specification, values to be taken literally are indicated by the use of this fixed-width font.¶
This specification uses the following terms:¶
OP: The OpenID Provider as defined in [OpenID.Core].¶
RP: The Relying Party as defined in [OpenID.Core].¶
This specification profiles how to bind a public key to an ID Token by:¶
adding the bound_key scope and dpop_jkt parameter to the OpenID Connect Authentication Request¶
receiving the authorization code as usual in the Authentication Response¶
adding the DPoP header that includes the hash of the code, c_hash, as a claim in the Token Request to the OP token_endpoint¶
adding the cnf claim containing the public key to the returned ID Token¶
+------+ +------+ | |-- Authentication Request --->| | | RP | (1) bound_key & dpop_jkt | OP | | | | | | |<-- Authentication Response --| | | | (2) authorization code | | | | | | | |-- Token Request ------------>| | | | (3) DPoP header w/ c_hash | | | | | | | |<-- Token Response -----------| | | | (4) cnf claim containing | | | | the public key in ID Token | | +------+ +------+¶
The OP's OpenID Connect Metadata Document [OpenID.Discovery] SHOULD include:¶
the bound_key scope in the supported_scopes¶
the dpop_signing_alg_values_supported property containing a list of supported algorithms as defined in [IANA.JOSE.ALGS]¶
If the key provided was not previously bound to the client, the OP SHOULD inform a user and obtain consent that a key binding will be done.¶
On successful authentication of, and consent from the user, the OP returns an authorization code.¶
Following is a non-normative example of a response:¶
TBD¶
To obtain the ID Token, the RP authenticating component:¶
generates a c_hash by computing a SHA256 hash of the authorization code¶
converts the hash to BASE64URL¶
generates a DPoP header, including the c_hash claim in the DPoP header JWT. This binds the authorization code to the token request.¶
Non-normative example:¶
POST /token HTTP/1.1 Host: server.example.com Content-Type: application/x-www-form-urlencoded Authorization: Basic czZCaGRSa3F0MzpnWDFmQmF0M2JW DPoP: eyJhbGciOiJFUzI1NiJ9.eyJ0eXAiOiJkcG9wK2p3dCIsImFsZyI6IkV\ TMjU2IiwiandrIjp7ImNydiI6IlAtMjU2Iiwia3R5IjoiRUMiLCJ4IjoibWptR\ m1MZm9wVmkwZXRfYTZmZFhUTnJqYVUwR1dlZFN0Y3NfRzU4OEkyMCIsInkiOiJ\ sMFZwRXlSYzdTdUpfdHFhd2NaQ2VLLXVUOEVPVnF4N3NqTHJGeUJTUllZIn0sI\ m5vbmNlIjoiU3BseGxPQmVaUVFZYllTNld4U2JJQSJ9.cp8uN3kHAMS9fhGH7T\ vTSKwH5oNJzAeMhIrgD_HQHGhgt_N1xQHdHiMkn7AMj3UDkwoNOW4Qqak grant_type=authorization_code&code=SplxlOBeZQQYbYS6WxSbIA &redirect_uri=https%3A%2F%2Fclient.example.org%2Fcb¶
If a DPoP header is included in the token request to the OP, and the dpop_jkt parameter was not included in the authentication request, the OP MUST NOT include the cnf claim in the ID Token.¶
This prevents an existing deployment using DPoP for access token from having them included in ID Tokens accidentally.¶
The OP MUST:
- perform all verification steps as described in [RFC9449] section 5.
- calculate the c_hash from the authorization code just as the RP component did.
- confirm the c_hash in the DPoP JWT matches its calculated c_hash¶
If the token request was successful, the OP MUST return an ID Token containing the cnf claim as defined in [RFC7800] set to the jwk of the user's public key and with typ set to id_token+cnf in the ID Token's protected header.¶
Non-normative example of the ID Token payload:¶
{
"iss": "https://server.example.com",
"sub": "24400320",
"aud": "s6BhdRkqt3",
"nonce": "n-0S6_WzA2Mj",
"exp": 1311281970,
"iat": 1311280970,
"cnf":
{
"jwk": {
"alg":"ES256",
"crv": "P-256",
"kty": "EC",
"x": "mjmFmLfopVi0et_a6fdXTNrjaU0GWedStcs_G588I20",
"y": "l0VpEyRc7SuJ_tqawcZCeK-uT8EOVqx7sjLrFyBSRYY"
}
}
}
¶
The mechanism for how an RP authenticating component proves to an RP consuming component that it possesses the private keys associated with the cnf claim in the ID Token is out of scope of this document.¶
If the WG wants to, we can also profile how to use KB to bind a proof of possession to an ID Token for presentation when a proof of possesion is not present.¶
An RP authenticating component SHOULD only share an ID Token with a consuming component when such sharing is consistent with the original purpose for which the PII was collected and the scope of consent obtained from the user.¶
An RP consuming component MUST NOT trust an ID Token with a cnf claim without a corresponding proof of possession from the RP authenticating component.¶
In addition to verifying the signature created by the RP authenticating component to prove possession of the private key associated with the cnf claim in the ID Token, an RP consuming component MUST independently verify the signature and validity of the ID Token and that the aud claim in the payload is the correct value, and that the typ claim in the protected header is id_token+cnf.¶
The ID Token MUST NOT be used as an access token to access resources. The RP MAY exchange the ID Token with a proof of possesion for an access token that can then be used to access resources.¶
To prevent token confusion attacks, the RP authenticating component SHOULD bind a unique key pair to its ID Tokens, and not use it for other purposes.¶
The cnf claim in the ID Token MUST be verified together with proof of possession and MUST NOT be treated as proof on its own. A proof of possession is REQUIRED to establish that a party controls the key identified by cnf. The cnf claim SHOULD only be used to bind a signed object with the other claims in the ID Token.¶
The following entry should be added to the "Media Types" registry for the new JWT type:¶
Type name: application¶
Subtype name: dpop+id_token¶
The authors would like to thank early feedback provided by Filip Skokan, George Fletcher, Jacob Ideskog, and Kosuke Koiwai.¶
To be completed if adopted.¶
[[ To be removed from the final specification ]]¶
-00¶
initial draft¶