here comes a new version of the framework draft with the following changes:
* Removed client token design (see discussion on mailing list)
* Rephrased parts to clarify that the use of other protocols than CoAP
is also allowed (especially HTTP)
* Removed the CBOR major type numbers (using their names instead) on
suggestion by Carsten.
More reviews and feedback are welcome!
-------- Forwarded Message --------
Subject: New Version Notification for draft-ietf-ace-oauth-authz-10.txt
Date: Tue, 13 Feb 2018 04:25:56 -0800
To: Ludwig Seitz <ludwig.se...@ri.se>, Hannes Tschofenig
<hannes.tschofe...@arm.com>, Goeran Selander
<goran.selan...@ericsson.com>, Samuel Erdtman <erdt...@spotify.com>,
Erik Wahlstroem <e...@wahlstromstekniska.se>
A new version of I-D, draft-ietf-ace-oauth-authz-10.txt
has been successfully submitted by Ludwig Seitz and posted to the
Title: Authentication and Authorization for Constrained Environments
Document date: 2018-02-13
This specification defines a framework for authentication and
authorization in Internet of Things (IoT) environments. The
framework is based on a set of building blocks including OAuth 2.0
and CoAP, thus making a well-known and widely used authorization
solution suitable for IoT devices. Existing specifications are used
where possible, but where the constraints of IoT devices require it,
extensions are added and profiles are defined.
Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.
The IETF Secretariat
Ace mailing list