IETF Logo Mail Archive

[Ace] Fwd: New Version Notification for draft-tiloca-ace-workflow-and-params-00.txt

Marco Tiloca <marco.tiloca@ri.se> Tue, 11 July 2023 14:50 UTC

Return-Path: <marco.tiloca@ri.se>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C477CC151983 for <ace@ietfa.amsl.com>; Tue, 11 Jul 2023 07:50:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ri.se
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RpYyopqWcj5b for <ace@ietfa.amsl.com>; Tue, 11 Jul 2023 07:50:25 -0700 (PDT)
Received: from MM0P280CU005.outbound.protection.outlook.com (mail-swedensouthazon11011003.outbound.protection.outlook.com [52.101.76.3]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3499DC15170B for <ace@ietf.org>; Tue, 11 Jul 2023 07:50:24 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=dVizeOa3bXFKFuvbNoMUfxeh60s/ex+XnY+Ax9QNl4aDdjcj5F11kVxp6VGDcsNoNLuX2Emr+WqmhRSVpxlEYSuf1lrsI4Sz5afmTWu4e/AP1xXYxvUGGgn4hD1GhgA8q8eDCMd9DsPHJuTU7eWA8Orb3IEaCdjRZ2WYAR4o2eMD3bYeE8kmllGB3Toha9TmHudOiz2VSI3bYL6C1ZjqRA2/mH0cy6P5mhMWkDUb/f1f8RJBAtRqJ4He7aaLzLsyz3Lhl+fpplEdGY4cguApxLvKZXsvQpMtrO5DPuVBA8rmOs9URv1W1ZtF6jVxWFxaBzDq3i0u5FCeD+n1dLhgEQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=4mqWxlm7ioX+9ET2PKxqr9Jc4dGO0WNTV4UCl8KgPYg=; b=gKo7A3HIMA99dEzzw8lXV0XcKoMsII3bL+rbT2QOr/Vokrt5ABTDQ3IWnmgrk35pqtuOgs+rJzILsIu+G8TKDU1KrBcaUHIYjRLjy8rE7+NL5C7lhNGPpYd5yJTmwoRDPuGZ3M2JccygNOggKcs+hDvTztP2hqfooAHhy06T0U42ae4D/C3Cjfu0rzUZtx1fvdjJq+W9c1wieudxwlYr4VRUBJO4artRl3n/8qifI4pOtoHP3jlx2bLHcDz78aHP4Ga77CtcCe6hDZ3jCz8Gjv0Xhg+OrHHV6Coq3Eq00L9zLSy+9UzSblKYz6JFKQn4XjCKLpf8RmBWl4f39JA6dg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ri.se; dmarc=pass action=none header.from=ri.se; dkim=pass header.d=ri.se; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ri.se; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=4mqWxlm7ioX+9ET2PKxqr9Jc4dGO0WNTV4UCl8KgPYg=; b=QWbmhgt4PEQ2j5ctOh9Z3elCKl329UAF2U8UtVEMjzvYn2Q9lLJ/TsMuGVcuNKaLl7zuoUCtcU61pOLV12IMWWuHm76UM+JFft2jndzzG9xQW8L8jONO1ne5aLV7mhnEJLYkDeuovijjvW84kmxuPYC6Dm+HHEya6ErTPZz9+IM=
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ri.se;
Received: from GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:37::17) by MM1PPFD2ADAABF5.SWEP280.PROD.OUTLOOK.COM (2603:10a6:184::26) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6455.31; Tue, 11 Jul 2023 14:50:22 +0000
Received: from GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM ([fe80::d6c0:769b:e171:b64b]) by GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM ([fe80::d6c0:769b:e171:b64b%4]) with mapi id 15.20.6588.017; Tue, 11 Jul 2023 14:50:22 +0000
Message-ID: <b0523855-d553-d70f-2d5d-2a38085aac6d@ri.se>
Date: Tue, 11 Jul 2023 16:50:20 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.11.0
References: <168900684265.43556.15624510794417782688@ietfa.amsl.com>
Content-Language: en-US
To: Ace Wg <ace@ietf.org>
From: Marco Tiloca <marco.tiloca@ri.se>
In-Reply-To: <168900684265.43556.15624510794417782688@ietfa.amsl.com>
X-Forwarded-Message-Id: <168900684265.43556.15624510794417782688@ietfa.amsl.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------m0KqCYBXkDUErJ02ZZIQaCtC"
X-ClientProxiedBy: GV3P280CA0102.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:8::27) To GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:37::17)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: GVYP280MB0464:EE_|MM1PPFD2ADAABF5:EE_
X-MS-Office365-Filtering-Correlation-Id: a91045d9-ccab-4c83-3e56-08db821e2705
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230028)(4636009)(366004)(39850400004)(136003)(376002)(346002)(396003)(451199021)(2616005)(38100700002)(86362001)(31696002)(166002)(36756003)(33964004)(6486002)(966005)(2906002)(15650500001)(5660300002)(45080400002)(478600001)(6506007)(186003)(316002)(26005)(6512007)(235185007)(8676002)(8936002)(41300700001)(21480400003)(44832011)(31686004)(66946007)(66476007)(66556008)(6916009)(83380400001)(66899021)(66574015)(45980500001)(43740500002); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: ri.se
X-MS-Exchange-CrossTenant-Network-Message-Id: a91045d9-ccab-4c83-3e56-08db821e2705
X-MS-Exchange-CrossTenant-AuthSource: GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 11 Jul 2023 14:50:21.9355 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 5a9809cf-0bcb-413a-838a-09ecc40cc9e8
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 6G4zoUxL/Plrxix9l2YC2RIqPbuIoxNn6xtnoKczVeEGukTzIuw1T1BA6ZAqJd50HN2nKZZj/tlkrU1T5Nz7RA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MM1PPFD2ADAABF5
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/IyBYFVo8rdY0szdOilzvew8fChQ>
Subject: [Ace] Fwd: New Version Notification for draft-tiloca-ace-workflow-and-params-00.txt
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Jul 2023 14:50:29 -0000

Dear all,

As anticipated during the presentation "Follow-Up Activities" at IETF 
116, we have recently submitted a new Internet Draft 
draft-tiloca-ace-workflow-and-params [1].

The document describes an update to the ACE framework (RFC9200), for 
which it specifies:

* An alternative protocol workflow, where the Authorization Server (AS) 
uploads the Access Token to the Resource Server (RS) on behalf of the 
Client (C); and

* Some additional parameters for the /token endpoint at the 
Authorization Server. These allow the Token Response from the AS to 
provide C with: an explicit feedback about the upload of the Access 
Token per the alternative workflow (see above); the public keys of the 
multiple Resource Servers that take part in the group-audience for which 
the Access Token is issued.

Comments are welcome!

Best,
/Marco

[1] https://datatracker.ietf.org/doc/draft-tiloca-ace-workflow-and-params/


-------- Forwarded Message --------
Subject: 	New Version Notification for 
draft-tiloca-ace-workflow-and-params-00.txt
Date: 	Mon, 10 Jul 2023 09:34:02 -0700
From: 	internet-drafts@ietf.org
To: 	Göran Selander <goran.selander@ericsson.com>, Goeran Selander 
<goran.selander@ericsson.com>, Marco Tiloca <marco.tiloca@ri.se>




A new version of I-D, draft-tiloca-ace-workflow-and-params-00.txt
has been successfully submitted by Marco Tiloca and posted to the
IETF repository.

Name: draft-tiloca-ace-workflow-and-params
Revision: 00
Title: Alternative Workflow and OAuth Parameters for the Authentication 
and Authorization for Constrained Environments (ACE) Framework
Document date: 2023-07-10
Group: Individual Submission
Pages: 22
URL: 
https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-tiloca-ace-workflow-and-params-00.txt&data=05%7C01%7Cmarco.tiloca%40ri.se%7C5e0fa7b979ca414728d708db81638f09%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638246036827076433%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=prcHvYbEIhl8l%2B65P3oK06K%2BDZ4KVSnEZFNaG7EyWGk%3D&reserved=0
Status: 
https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-tiloca-ace-workflow-and-params%2F&data=05%7C01%7Cmarco.tiloca%40ri.se%7C5e0fa7b979ca414728d708db81638f09%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638246036827076433%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=rkW7S99UXCjkjFy1hXEIWuaQf5COEtqocM7%2FCX9nPN4%3D&reserved=0
Html: 
https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-tiloca-ace-workflow-and-params-00.html&data=05%7C01%7Cmarco.tiloca%40ri.se%7C5e0fa7b979ca414728d708db81638f09%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638246036827076433%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=vd2WePHYhZ2bfqmilUUiTB9EKyLgYcuqIXvLxchv4aA%3D&reserved=0
Htmlized: 
https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fhtml%2Fdraft-tiloca-ace-workflow-and-params&data=05%7C01%7Cmarco.tiloca%40ri.se%7C5e0fa7b979ca414728d708db81638f09%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638246036827231895%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=6u2xyYs5%2BMWQIaNI2Ff7wKOrBy%2FhKOVsmHPH9gr%2BxaI%3D&reserved=0


Abstract:
This document updates the Authentication and Authorization for
Constrained Environments Framework (ACE, RFC 9200) as follows.
First, it defines a new, alternative workflow that the Authorization
Server can use for uploading an access token to a Resource Server on
behalf of the Client. Second, it defines new parameters and
encodings for the OAuth 2.0 token endpoint at the Authorization
Server.



The IETF Secretariat

v2.23.0 | Report a Bug | By Email