[stir] I-D Action: draft-ietf-stir-enhance-rfc8226-03.txt

internet-drafts@ietf.org Thu, 10 June 2021 21:28 UTC

Return-Path: <internet-drafts@ietf.org>
X-Original-To: stir@ietf.org
Delivered-To: stir@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id B2BD23A1AB7; Thu, 10 Jun 2021 14:28:51 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: stir@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 7.31.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: stir@ietf.org
Message-ID: <162336053165.32476.16100879415435557850@ietfa.amsl.com>
Date: Thu, 10 Jun 2021 14:28:51 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/HppbcHJwrc6IztElhiMh523WUqo>
Subject: [stir] I-D Action: draft-ietf-stir-enhance-rfc8226-03.txt
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Jun 2021 21:28:52 -0000

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Secure Telephone Identity Revisited WG of the IETF.

        Title           : Enhanced JWT Claim Constraints for STIR Certificates
        Author          : Russ Housley
	Filename        : draft-ietf-stir-enhance-rfc8226-03.txt
	Pages           : 11
	Date            : 2021-06-10

   RFC 8226 specifies the use of certificates for Secure Telephone
   Identity Credentials, and these certificates are often called "STIR
   Certificates".  RFC 8226 provides a certificate extension to
   constrain the JSON Web Token (JWT) claims that can be included in the
   Personal Assertion Token (PASSporT) as defined in RFC 8225.  If the
   PASSporT signer includes a JWT claim outside the constraint
   boundaries, then the PASSporT recipient will reject the entire
   PASSporT.  This document updates RFC 8226 to define an additional way
   that the JWT claims can be constrained.

The IETF datatracker status page for this draft is:

There is also an htmlized version available at:

A diff from the previous version is available at:

Internet-Drafts are also available by anonymous FTP at: