JWT Data Exchange is a good method for securely transmitting data
between parties, because as they can be signed
you can be sure that the senders are who they say they are (non-Repudiation
). Additionally, as the JSON Web Signature
is calculated using the header and the payload, you can also verify that the content hasn't changed (integrity
By using JSON Web Encryption (JWE) or if the JSON Web Token is also transmitted over HTTPS you also gain Confidentiality.
There might be more information for this subject on one of the following: