Skip to main content

Justin Richer
Pronouns: he/him

Justin Richer is a security architect, software engineer, standards editor, and systems designer with over two decades of industry experience. He is the lead author of the book "OAuth2 In Action" and contributor to OAuth 2.0 and OpenID Connect. Justin is the editor of a variety of standards including GNAP, HTTP Message Signatures (RFC9421), Vectors of Trust (RFC8485), and OAuth extensions for dynamic registration (RFC7591, RFC7592), token introspection (RFC7662), and rich authorization requests (RFC9396). Justin is a co-author to US government standards NIST SP 800-63, FIPS201, and NIST SP 800-217.


Role Group Email
Chair Workload Identity in Multi System Environments (wimse)

External Resources

Name Value
GitHub Username jricher
Additional Web Page

RFCs (6)

RFC Date Title Cited by
RFC 7591 Jul 2015 OAuth 2.0 Dynamic Client Registration Protocol 12 RFCs
RFC 7592 Jul 2015 OAuth 2.0 Dynamic Client Registration Management Protocol 1 RFC
RFC 7662 Oct 2015 OAuth 2.0 Token Introspection 11 RFCs
RFC 8485 Oct 2018 Vectors of Trust
RFC 9396 May 2023 OAuth 2.0 Rich Authorization Requests
RFC 9421 Feb 2024 HTTP Message Signatures 1 RFC

Active Internet-Drafts (2)

Expired Internet-Drafts (24)

(Excluding replaced Internet-Drafts.)

Internet-Draft Activity