[OAUTH-WG] Fwd: I-D Action: draft-ietf-oauth-dpop-07.txt

Brian Campbell Fri, 25 Mar 2022 03:00:53 -0700

Rifaat, Hannes, and WG,

This -07 draft adds the text to request registration of the
application/dpop+jwt media type and incorporates some editorial changes
aimed at addressing recent feedback/questions.


As discussed at the first OAuth session at IETF 113 on March 21, this
update gets the draft ready for working group last call. As such, I'd
respectfully request that the chairs start WGLC.

Thanks,


---------- Forwarded message ---------
From: <[email protected]>
Date: Fri, Mar 25, 2022 at 10:39 AM
Subject: [OAUTH-WG] I-D Action: draft-ietf-oauth-dpop-07.txt
To: <[email protected]>
Cc: <[email protected]>



A New Internet-Draft is available from the on-line Internet-Drafts
directories.
This draft is a work item of the Web Authorization Protocol WG of the IETF.

        Title           : OAuth 2.0 Demonstrating Proof-of-Possession at
the Application Layer (DPoP)
        Authors         : Daniel Fett
                          Brian Campbell
                          John Bradley
                          Torsten Lodderstedt
                          Michael Jones
                          David Waite
        Filename        : draft-ietf-oauth-dpop-07.txt
        Pages           : 42
        Date            : 2022-03-25

Abstract:
   This document describes a mechanism for sender-constraining OAuth 2.0
   tokens via a proof-of-possession mechanism on the application level.
   This mechanism allows for the detection of replay attacks with access
   and refresh tokens.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-oauth-dpop/

There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-oauth-dpop-07.html

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-oauth-dpop-07


Internet-Drafts are also available by rsync at rsync.ietf.org:
:internet-drafts


_______________________________________________
OAuth mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/oauth

-- 
_CONFIDENTIALITY NOTICE: This email may contain confidential and privileged 
material for the sole use of the intended recipient(s). Any review, use, 
distribution or disclosure by others is strictly prohibited.  If you have 
received this communication in error, please notify the sender immediately 
by e-mail and delete the message and any file attachments from your 
computer. Thank you._

_______________________________________________
OAuth mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/oauth

[OAUTH-WG] Fwd: I-D Action: draft-ietf-oauth-dpop-07.txt

Reply via email to