I answered by explaining that JWT is used to securely transmit information between client and server. After a user logs in, the server generates a signed token using a secret key, which contains user details and expiry time. The client includes this token in the Authorization header for each request, and the server verifies it without storing session data. I also mentioned it improves scalability and security when using microservices.