Summary: This Internet-Draft replicates the functionality of section 5.3 of RFC 7519 but here for the benefit of CWT claims in COSE headers rather than JWT claims in JOSE headers. To the limits of my understanding of COSE, this brief specification seems reasonable. It points out security considerations (separately from that section of the document) that replicate those found in RFC 7519. I've no objections to this draft. [Ready]

Major issues: None

Minor issues: None

Nits: None