!!! Overview
[{$pagename}] ([PoP]) is an [assertion] where the presenter presents some [Cryptographic Key], [Security Token] or [Secret][{$pagename}] implies a [Possession Factor] as used to [Authenticate] and often used in [Multi-Factor Authentication]

[{$pagename}] refers to [Cryptographic] [methods] that mitigate the [risk] of [Security Tokens] being stolen and used by an [attacker]. In contrast to '[Bearer Tokens]', where mere possession of the [Security Token] allows the [attacker] to use it, a [PoP] [Security Token] cannot be so easily used - the [attacker] [MUST] have both the token itself and access to some [key] associated with the token (which is why they are sometimes referred to '[Holder-of-Key]' ([HoK]) tokens).

[PoP] describes a general security characteristic of a [Secret] - there are different ways to achieve that characteristic. 

* [Token Binding Protocol]
* [Token Binding over HTTP]
* A [{$pagename}] [Token] as the [Proof-of-Possession Key Semantics for JSON Web Tokens (JWTs)] 
* [Demonstration of Proof-of-Possession] ([DPoP])
* [SAML Holder of Key]

!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
----
* [#1] - [New Standards Emerging for HoK Tokens|https://www.pingidentity.com/en/company/blog/2015/01/20/new_standards_emerging_for_hok_tokens.html|target='_blank'] - based on information obtained 2015-05-02 
* [#2] - [Proof of Possession Models|https://www.pingidentity.com/en/company/blog/2017/04/25/proof_of_possession_models.html|target='_blank'] - based on information obtained 2019-05-25