IETF Logo Mail Archive

[Ace] I-D Action: draft-ietf-ace-aif-04.txt

internet-drafts@ietf.org Fri, 28 January 2022 14:29 UTC

Return-Path: <internet-drafts@ietf.org>
X-Original-To: ace@ietf.org
Delivered-To: ace@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 24BBA3A1603; Fri, 28 Jan 2022 06:29:30 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: <i-d-announce@ietf.org>
Cc: ace@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 7.43.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: ace@ietf.org
Message-ID: <164338017009.17061.4460362194218791141@ietfa.amsl.com>
Date: Fri, 28 Jan 2022 06:29:30 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/LCixJSqQbp9l_iGKIr_ZqoEA5AE>
Subject: [Ace] I-D Action: draft-ietf-ace-aif-04.txt
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Jan 2022 14:29:30 -0000

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Authentication and Authorization for Constrained Environments WG of the IETF.

        Title           : An Authorization Information Format (AIF) for ACE
        Author          : Carsten Bormann
	Filename        : draft-ietf-ace-aif-04.txt
	Pages           : 14
	Date            : 2022-01-28

Abstract:
   Constrained Devices as they are used in the "Internet of Things" need
   security.  One important element of this security is that devices in
   the Internet of Things need to be able to decide which operations
   requested of them should be considered authorized, need to ascertain
   that the authorization to request the operation does apply to the
   actual requester, and need to ascertain that other devices they place
   requests on are the ones they intended.

   To transfer detailed authorization information from an authorization
   manager (such as an ACE-OAuth Authorization Server) to a device, a
   compact representation format is needed.  This document provides a
   suggestion for such a format, the Authorization Information Format
   (AIF).  AIF is defined both as a general structure that can be used
   for many different applications and as a specific refinement that
   describes REST resources (potentially dynamically created) and the
   permissions on them.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-ace-aif/

There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-ace-aif-04.html

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-ace-aif-04


Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts

v2.8.7 | Report a Bug | By Email