[Ace] I-D Action: draft-ietf-ace-group-oscore-profile-00.txt
internet-drafts@ietf.org Tue, 02 January 2024 19:40 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: ace@ietf.org
Delivered-To: ace@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 19DECC1519B4; Tue, 2 Jan 2024 11:40:42 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: ace@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.1.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: ace@ietf.org
Message-ID: <170422444209.20693.7609427550206529238@ietfa.amsl.com>
Date: Tue, 02 Jan 2024 11:40:42 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/yjOzevMsyE6Hzh9JZNBzyoxCdWs>
Subject: [Ace] I-D Action: draft-ietf-ace-group-oscore-profile-00.txt
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.39
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Jan 2024 19:40:42 -0000
Internet-Draft draft-ietf-ace-group-oscore-profile-00.txt is now available. It is a work item of the Authentication and Authorization for Constrained Environments (ACE) WG of the IETF. Title: The Group Object Security for Constrained RESTful Environments (Group OSCORE) Profile of the Authentication and Authorization for Constrained Environments (ACE) Framework Authors: Marco Tiloca Rikard Höglund Francesca Palombini Name: draft-ietf-ace-group-oscore-profile-00.txt Pages: 39 Dates: 2023-12-22 Abstract: This document specifies a profile for the Authentication and Authorization for Constrained Environments (ACE) framework. The profile uses Group Object Security for Constrained RESTful Environments (Group OSCORE) to provide communication security between a Client and one or multiple Resource Servers that are members of an OSCORE group. The profile securely binds an OAuth 2.0 Access Token to the public key of the Client associated with the private key used by that Client in the OSCORE group. The profile uses Group OSCORE to achieve server authentication, as well as proof-of-possession for the Client's public key. Also, it provides proof of the Client's membership to the OSCORE group by binding the Access Token to information from the Group OSCORE Security Context, thus allowing the Resource Server(s) to verify the Client's membership upon receiving a message protected with Group OSCORE from the Client. Effectively, the profile enables fine-grained access control paired with secure group communication, in accordance with the Zero Trust principles. The IETF datatracker status page for this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-ace-group-oscore-profile/ There is also an HTML version available at: https://www.ietf.org/archive/id/draft-ietf-ace-group-oscore-profile-00.html Internet-Drafts are also available by rsync at: rsync.ietf.org::internet-drafts
- [Ace] I-D Action: draft-ietf-ace-group-oscore-pro… internet-drafts