IETF Logo Mail Archive

I-D Action: draft-tiloca-ace-group-oscore-profile-11.txt

internet-drafts@ietf.org Mon, 10 July 2023 16:30 UTC

Return-Path: <internet-drafts@ietf.org>
X-Original-To: i-d-announce@ietf.org
Delivered-To: i-d-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 3F6B1C137396 for <i-d-announce@ietf.org>; Mon, 10 Jul 2023 09:30:16 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Subject: I-D Action: draft-tiloca-ace-group-oscore-profile-11.txt
X-Test-IDTracker: no
X-IETF-IDTracker: 11.4.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <168900661624.33372.1068313600302538499@ietfa.amsl.com>
Date: Mon, 10 Jul 2023 09:30:16 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/i-d-announce/kHOguTbB6cfl9E9f4LsKyEv2zu8>
X-BeenThere: i-d-announce@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Internet Draft Announcements only <i-d-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i-d-announce/>
List-Post: <mailto:i-d-announce@ietf.org>
List-Help: <mailto:i-d-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Jul 2023 16:30:16 -0000

A New Internet-Draft is available from the on-line Internet-Drafts
directories.

   Title           : The Group Object Security for Constrained RESTful Environments (Group OSCORE) Profile of the Authentication and Authorization for Constrained Environments (ACE) Framework
   Authors         : Marco Tiloca
                     Rikard Höglund
                     Ludwig Seitz
                     Francesca Palombini
   Filename        : draft-tiloca-ace-group-oscore-profile-11.txt
   Pages           : 39
   Date            : 2023-07-10

Abstract:
   This document specifies a profile for the Authentication and
   Authorization for Constrained Environments (ACE) framework.  The
   profile uses Group Object Security for Constrained RESTful
   Environments (Group OSCORE) to provide communication security between
   a Client and one or multiple Resource Servers that are members of an
   OSCORE group.  The profile securely binds an OAuth 2.0 Access Token
   to the public key of the Client associated with the private key used
   by that Client in the OSCORE group.  The profile uses Group OSCORE to
   achieve server authentication, as well as proof-of-possession for the
   Client's public key.  Also, it provides proof of the Client's
   membership to the OSCORE group by binding the Access Token to
   information from the Group OSCORE Security Context, thus allowing the
   Resource Server(s) to verify the Client's membership upon receiving a
   message protected with Group OSCORE from the Client.  Effectively,
   the profile enables fine-grained access control paired with secure
   group communication, in accordance with the Zero Trust principles.

The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-tiloca-ace-group-oscore-profile/

There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-tiloca-ace-group-oscore-profile-11.html

A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-tiloca-ace-group-oscore-profile-11

Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts

v2.23.0 | Report a Bug | By Email