 
Header Parameter Name,Header Parameter Description,Header Parameter Usage Location(s),Change Controller,Reference
alg,Algorithm,JWS,[IESG],"[RFC7515, Section 4.1.1]"
jku,JWK Set URL,JWS,[IESG],"[RFC7515, Section 4.1.2]"
jwk,JSON Web Key,JWS,[IESG],"[RFC7515, Section 4.1.3]"
kid,Key ID,JWS,[IESG],"[RFC7515, Section 4.1.4]"
x5u,X.509 URL,JWS,[IESG],"[RFC7515, Section 4.1.5]"
x5c,X.509 Certificate Chain,JWS,[IESG],"[RFC7515, Section 4.1.6]"
x5t,X.509 Certificate SHA-1 Thumbprint,JWS,[IESG],"[RFC7515, Section 4.1.7]"
x5t#S256,X.509 Certificate SHA-256 Thumbprint,JWS,[IESG],"[RFC7515, Section 4.1.8]"
typ,Type,JWS,[IESG],"[RFC7515, Section 4.1.9]"
cty,Content Type,JWS,[IESG],"[RFC7515, Section 4.1.10]"
crit,Critical,JWS,[IESG],"[RFC7515, Section 4.1.11]"
alg,Algorithm,JWE,[IESG],"[RFC7516, Section 4.1.1]"
enc,Encryption Algorithm,JWE,[IESG],"[RFC7516, Section 4.1.2]"
zip,Compression Algorithm,JWE,[IESG],"[RFC7516, Section 4.1.3]"
jku,JWK Set URL,JWE,[IESG],"[RFC7516, Section 4.1.4]"
jwk,JSON Web Key,JWE,[IESG],"[RFC7516, Section 4.1.5]"
kid,Key ID,JWE,[IESG],"[RFC7516, Section 4.1.6]"
x5u,X.509 URL,JWE,[IESG],"[RFC7516, Section 4.1.7]"
x5c,X.509 Certificate Chain,JWE,[IESG],"[RFC7516, Section 4.1.8]"
x5t,X.509 Certificate SHA-1 Thumbprint,JWE,[IESG],"[RFC7516, Section 4.1.9]"
x5t#S256,X.509 Certificate SHA-256 Thumbprint,JWE,[IESG],"[RFC7516, Section 4.1.10]"
typ,Type,JWE,[IESG],"[RFC7516, Section 4.1.11]"
cty,Content Type,JWE,[IESG],"[RFC7516, Section 4.1.12]"
crit,Critical,JWE,[IESG],"[RFC7516, Section 4.1.13]"
epk,Ephemeral Public Key,JWE,[IESG],"[RFC7518, Section 4.6.1.1]"
apu,Agreement PartyUInfo,JWE,[IESG],"[RFC7518, Section 4.6.1.2]"
apv,Agreement PartyVInfo,JWE,[IESG],"[RFC7518, Section 4.6.1.3]"
iv,Initialization Vector,JWE,[IESG],"[RFC7518, Section 4.7.1.1]"
tag,Authentication Tag,JWE,[IESG],"[RFC7518, Section 4.7.1.2]"
p2s,PBES2 Salt Input,JWE,[IESG],"[RFC7518, Section 4.8.1.1]"
p2c,PBES2 Count,JWE,[IESG],"[RFC7518, Section 4.8.1.2]"
iss,Issuer,JWE,[IESG],"[RFC7519, Section 4.1.1]"
sub,Subject,JWE,[IESG],"[RFC7519, Section 4.1.2]"
aud,Audience,JWE,[IESG],"[RFC7519, Section 4.1.3]"
b64,Base64url-Encode Payload,JWS,[IESG],"[RFC7797, Section 3]"
ppt,PASSporT extension identifier,JWS,[IESG],"[RFC8225, Section 8.1]"
url,URL,"JWE, JWS",[IESG],"[RFC8555, Section 6.4.1]"
nonce,Nonce,"JWE, JWS",[IESG],"[RFC8555, Section 6.5.2]"
svt,Signature Validation Token,JWS,[IETF],[RFC9321]
trust_chain,OpenID Federation Trust Chain,JWS,[OpenID_Foundation_Artifact_Binding_Working_Group],"[OpenID Federation 1.0, Section 4.0]"
iheSSId,The iheSSId header parameter's value shall specify the SubmissionSet.uniqueId as per [https://profiles.ihe.net/ITI/TF/Volume3/ch-4.2.html#4.2.3.3.12].,JWS,[IHE_ITI],[https://profiles.ihe.net/ITI/DSGj/Volume3/ch-5.10.html#5.10]
jwt,This header contains a JWT. Processing rules MAY depend on the typ header value of the respective JWT.,JWS,[OpenID_Foundation_Digital_Credentials_Protocols_Working_Group],"[OpenID for Verifiable Presentations 1.0, Section 12]"
client_id,"This header contains a Client Identifier. A Client Identifier is used in OAuth to identify a certain client. It is defined in [RFC6749], section 2.2.",JWS,[IETF],[RFC6749]