[OAUTH-WG] I-D Action: draft-ietf-oauth-cross-device-security-06.txt

internet-drafts@ietf.org Thu, 04 April 2024 16:22 UTC

MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: oauth@ietf.org
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: oauth@ietf.org
Message-ID: <171224776895.52243.12770201983352381170@ietfa.amsl.com>
Date: Thu, 04 Apr 2024 09:22:48 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/WQHInEDNGiketewONA5uluelgXQ>
Subject: [OAUTH-WG] I-D Action: draft-ietf-oauth-cross-device-security-06.txt

Internet-Draft draft-ietf-oauth-cross-device-security-06.txt is now available.
It is a work item of the Web Authorization Protocol (OAUTH) WG of the IETF.

   Title:   Cross-Device Flows: Security Best Current Practice
   Authors: Pieter Kasselman
            Daniel Fett
            Filip Skokan
   Name:    draft-ietf-oauth-cross-device-security-06.txt
   Pages:   54
   Dates:   2024-04-04

Abstract:

   This document describes threats against cross-device flows along with
   practical mitigations, protocol selection guidance, and a summary of
   formal analysis results identified as relevant to the security of
   cross-device flows.  It serves as a security guide to system
   designers, architects, product managers, security specialists, fraud
   analysts and engineers implementing cross-device flows.

The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-oauth-cross-device-security/

There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-oauth-cross-device-security-06.html

A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-oauth-cross-device-security-06

Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts

[OAUTH-WG] I-D Action: draft-ietf-oauth-cross-dev… internet-drafts