Dear Ace,
The new draft has the following changes:
Version -07 to -08
* Revised presentation of the scope format.
* Revised presentation of the Join Request-Response exchange.
* The 'cnonce' parameter must be present in the Join Request.
* The 'kid' of the group key is used as Group Identifier.
* Relaxed inclusion of the 'peer_roles' parameter.
* More detailed description of the encryption and signing
operations.
* Defined construction of the AEAD nonce.
* Clarifications and editorial improvements.
Thanks, Marco!
--Cigdem
On Mon, 23 Oct 2023 at 21:34, <[email protected]> wrote:
> Internet-Draft draft-ietf-ace-pubsub-profile-08.txt is now available. It
> is a
> work item of the Authentication and Authorization for Constrained
> Environments
> (ACE) WG of the IETF.
>
> Title: Publish-Subscribe Profile for Authentication and Authorization
> for Constrained Environments (ACE)
> Authors: Francesca Palombini
> Cigdem Sengul
> Marco Tiloca
> Name: draft-ietf-ace-pubsub-profile-08.txt
> Pages: 48
> Dates: 2023-10-23
>
> Abstract:
>
> This document defines an application profile of the Authentication
> and Authorization for Constrained Environments (ACE) framework, to
> enable secure group communication in the Publish-Subscribe (pub/sub)
> architecture for the Constrained Application Protocol (CoAP) [draft-
> ietf-core-coap-pubsub], where Publishers and Subscribers communicate
> through a Broker. This profile relies on protocol-specific transport
> profiles of ACE to achieve communication security, server
> authentication, and proof-of-possession for a key owned by the Client
> and bound to an OAuth 2.0 Access Token. This document specifies the
> provisioning and enforcement of authorization information for Clients
> to act as Publishers and/or Subscribers, as well as the provisioning
> of keying material and security parameters that Clients use for
> protecting their communications end-to-end through the Broker.
>
> Note to RFC Editor: Please replace "[draft-ietf-core-coap-pubsub]"
> with the RFC number of that document and delete this paragraph.
>
> The IETF datatracker status page for this Internet-Draft is:
> https://datatracker.ietf.org/doc/draft-ietf-ace-pubsub-profile/
>
> There is also an HTML version available at:
> https://www.ietf.org/archive/id/draft-ietf-ace-pubsub-profile-08.html
>
> A diff from the previous version is available at:
> https://author-tools.ietf.org/iddiff?url2=draft-ietf-ace-pubsub-profile-08
>
> Internet-Drafts are also available by rsync at:
> rsync.ietf.org::internet-drafts
>
>
> _______________________________________________
> Ace mailing list
> [email protected]
> https://www.ietf.org/mailman/listinfo/ace
>
_______________________________________________
Ace mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ace
