[Ace] AIF as discussed today (Re: I-D Action: draft-bormann-core-ace-aif-08.txt)
Carsten Bormann <cabo@tzi.org> Mon, 22 June 2020 22:16 UTC
Return-Path: <cabo@tzi.org>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8D0D43A11F5 for <ace@ietfa.amsl.com>; Mon, 22 Jun 2020 15:16:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id riwiNHb3vcx6 for <ace@ietfa.amsl.com>; Mon, 22 Jun 2020 15:16:57 -0700 (PDT)
Received: from gabriel-vm-2.zfn.uni-bremen.de (gabriel-vm-2.zfn.uni-bremen.de [134.102.50.17]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 076C03A11F3 for <ace@ietf.org>; Mon, 22 Jun 2020 15:16:56 -0700 (PDT)
Received: from [192.168.217.116] (p5089ae91.dip0.t-ipconnect.de [80.137.174.145]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by gabriel-vm-2.zfn.uni-bremen.de (Postfix) with ESMTPSA id 49rP072lmXzyXw; Tue, 23 Jun 2020 00:16:55 +0200 (CEST)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.80.23.2.2\))
From: Carsten Bormann <cabo@tzi.org>
In-Reply-To: <159286394732.28803.9776136105746750769@ietfa.amsl.com>
Date: Tue, 23 Jun 2020 00:16:54 +0200
X-Mao-Original-Outgoing-Id: 614557014.575776-cf93e3c68acb86bbb291136180626081
Content-Transfer-Encoding: quoted-printable
Message-Id: <1A09E8B0-7330-4208-885A-D66C2FD0513B@tzi.org>
References: <159286394732.28803.9776136105746750769@ietfa.amsl.com>
To: Ace Wg <ace@ietf.org>
X-Mailer: Apple Mail (2.3608.80.23.2.2)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/8O0knFrJuy09FcmxEzukDsF40h8>
Subject: [Ace] AIF as discussed today (Re: I-D Action: draft-bormann-core-ace-aif-08.txt)
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 22 Jun 2020 22:17:00 -0000
I went ahead and quickly implemented what we had discussed today. https://www.ietf.org/id/draft-bormann-core-ace-aif-08.html Lots more editing to do, but the gist of what I was trying to say should be there. Comments welcome! Grüße, Carsten > On 2020-06-23, at 00:12, internet-drafts@ietf.org wrote: > > > A New Internet-Draft is available from the on-line Internet-Drafts directories. > This draft is a work item of the Authentication and Authorization for Constrained Environments WG of the IETF. > > Title : An Authorization Information Format (AIF) for ACE > Author : Carsten Bormann > Filename : draft-bormann-core-ace-aif-08.txt > Pages : 9 > Date : 2020-06-22 > > Abstract: > Constrained Devices as they are used in the "Internet of Things" need > security. One important element of this security is that devices in > the Internet of Things need to be able to decide which operations > requested of them should be considered authorized, need to ascertain > that the authorization to request the operation does apply to the > actual requester, and need to ascertain that other devices they place > requests on are the ones they intended. > > To transfer detailed authorization information from an authorization > manager (such as an ACE-OAuth Authorization Server) to a device, a > representation format is needed. This document provides a suggestion > for such a format, the Authorization Information Format (AIF). AIF > is defined both as a general structure that can be used for many > different applications and as a specific refinement that describes > REST resources and the permissions on them. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-bormann-core-ace-aif/ > > There are also htmlized versions available at: > https://tools.ietf.org/html/draft-bormann-core-ace-aif-08 > https://datatracker.ietf.org/doc/html/draft-bormann-core-ace-aif-08 > > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=draft-bormann-core-ace-aif-08 > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > > _______________________________________________ > I-D-Announce mailing list > I-D-Announce@ietf.org > https://www.ietf.org/mailman/listinfo/i-d-announce > Internet-Draft directories: http://www.ietf.org/shadow.html > or ftp://ftp.ietf.org/ietf/1shadow-sites.txt
- [Ace] I-D Action: draft-bormann-core-ace-aif-08.t… internet-drafts
- [Ace] AIF as discussed today (Re: I-D Action: dra… Carsten Bormann
- Re: [Ace] AIF as discussed today (Re: I-D Action:… Francesca Palombini
- Re: [Ace] AIF as discussed today (Re: I-D Action:… Jim Schaad
- Re: [Ace] AIF as discussed today (Re: I-D Action:… Cigdem Sengul
- Re: [Ace] AIF as discussed today (Re: I-D Action:… Marco Tiloca
- [Ace] AIF-09 (Re: AIF as discussed today (Re: I-D… Carsten Bormann