CBOR Web Token (CWT)

The information below is for an old version of the document
Document Type Expired Internet-Draft (ace WG)
Authors Erik Wahlstroem  , Michael Jones  , Hannes Tschofenig  , Samuel Erdtman 
Last updated 2017-01-08 (latest revision 2016-07-07)
Replaces draft-wahlstroem-ace-cbor-web-token
Stream Internet Engineering Task Force (IETF)
Expired & archived
pdf htmlized bibtex
Additional Resources
- Mailing list discussion
Stream WG state WG Document
Document shepherd No shepherd assigned
IESG IESG state Expired
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


CBOR Web Token (CWT) is a compact means of representing claims to be transferred between two parties. CWT is a profile of the JSON Web Token (JWT) that is optimized for constrained devices. The claims in a CWT are encoded in the Concise Binary Object Representation (CBOR) and CBOR Object Signing and Encryption (COSE) is used for added application layer security protection. A claim is a piece of information asserted about a subject and is represented as a name/ value pair consisting of a claim name and a claim value.


Erik Wahlstroem (erik@wahlstromstekniska.se)
Michael Jones (mbj@microsoft.com)
Hannes Tschofenig (hannes.tschofenig@arm.com)
Samuel Erdtman (erdtman@spotify.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)