As per email from myself and Roland's reply on certification list:
My understanding is that a OP that doesn't support any signing can certify if it only issues id_tokens in the back channel.
Basically, if the test description does not specify any special algorithm in the registration phase or as part of the assertions
then any algorithm the RP supports can be used.
As per email from myself and Roland's reply on certification list: