Hi all, This latest version addresses the comments received during IETF Last Call. Thanks a lot to the reviewers for their comments and feedback!
In addition to that, this version: * Addresses a few remaining comments from Paul as a follow-up of his AD review, mostly on wording about randomness and size of nonces (see https://mailarchive.ietf.org/arch/msg/ace/GbK2_LUWczMAWPuXFEO6039SD50/ ) * Ensures consistency with RFC 9594 when using an optimized Join Request for re-joining a group if already a group member (see Sections 4, 6.1, and 6.2 of this document) --- The 'client_cred' parameter cannot be omitted, but it can take a short sentinel value to enforce the optimization. * Minor clarifications, editorial improvements, and fixes in the IANA considerations. Best, /Marco ________________________________ From: [email protected] <[email protected]> Sent: Saturday, January 24, 2026 1:15 PM To: [email protected] <[email protected]> Cc: [email protected] <[email protected]> Subject: [Ace] I-D Action: draft-ietf-ace-key-groupcomm-oscore-19.txt Internet-Draft draft-ietf-ace-key-groupcomm-oscore-19.txt is now available. It is a work item of the Authentication and Authorization for Constrained Environments (ACE) WG of the IETF. Title: Key Management for Group Object Security for Constrained RESTful Environments (Group OSCORE) Using Authentication and Authorization for Constrained Environments (ACE) Authors: Marco Tiloca Francesca Palombini Name: draft-ietf-ace-key-groupcomm-oscore-19.txt Pages: 124 Dates: 2026-01-24 Abstract: This document defines an application profile of the Authentication and Authorization for Constrained Environments (ACE) framework, to request and provision keying material in group communication scenarios that are based on the Constrained Application Protocol (CoAP) and are secured with Group Object Security for Constrained RESTful Environments (Group OSCORE). This application profile delegates the authentication and authorization of Clients, which join an OSCORE group through a Resource Server acting as Group Manager for that group. This application profile leverages protocol-specific transport profiles of ACE to achieve communication security, server authentication, and proof of possession for a key owned by the Client and bound to an OAuth 2.0 access token. The IETF datatracker status page for this Internet-Draft is: https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-ace-key-groupcomm-oscore%2F&data=05%7C02%7Cmarco.tiloca%40ri.se%7C3efadf019ab74bdcd26b08de5b424354%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C639048537329776014%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=TRFsH%2FMpLrN%2BJ2emeg9VpLf3BHEhny8%2BctfRk7sHfBY%3D&reserved=0<https://datatracker.ietf.org/doc/draft-ietf-ace-key-groupcomm-oscore/> There is also an HTML version available at: https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-ietf-ace-key-groupcomm-oscore-19.html&data=05%7C02%7Cmarco.tiloca%40ri.se%7C3efadf019ab74bdcd26b08de5b424354%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C639048537329816312%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=jafrzmhi1TBQlneHaKeOiLj8auIh25T6UvVPDSGNgsc%3D&reserved=0<https://www.ietf.org/archive/id/draft-ietf-ace-key-groupcomm-oscore-19.html> A diff from the previous version is available at: https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fauthor-tools.ietf.org%2Fiddiff%3Furl2%3Ddraft-ietf-ace-key-groupcomm-oscore-19&data=05%7C02%7Cmarco.tiloca%40ri.se%7C3efadf019ab74bdcd26b08de5b424354%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C639048537329843718%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=yo%2BBo12Sj58lnkZ5mVODuL0UYwjbQIBW9KOMWLQkHxw%3D&reserved=0<https://author-tools.ietf.org/iddiff?url2=draft-ietf-ace-key-groupcomm-oscore-19> Internet-Drafts are also available by rsync at: rsync.ietf.org::internet-drafts _______________________________________________ Ace mailing list -- [email protected] To unsubscribe send an email to [email protected]
_______________________________________________ Ace mailing list -- [email protected] To unsubscribe send an email to [email protected]
