Hi Daniel and all, On 2023-03-13 18:36, Daniel Migault wrote:
Hi everyone,This email starts a WGLC for draft-ietf-ace-revoked-token-notification which ends on March 27. Please provide your support and feed backs by that time. We will take advantage of the IETF116 session to solve any remaining discussions on that draft.I am also looking for someone interested in being the document shepherd: Please volunteer!To the co-authors I am looking at: - 1) a heads-up regarding the implementations.
==>MTAn implementation from Marco Rasori is available at [1], as building on the implementation of the ACE framework at [2]. It is planned to make a pull request of [1] onto [2].
[1] https://bitbucket.org/marco-rasori-iit/ace-java/src/ucs/ [2] https://bitbucket.org/marco-tiloca-sics/ace-java <==
- 2) a confirmation that they are or not aware of any IPR
==>MT I do not have and I am not aware of any IPR on this document. <==
- 3) a confirmation that they are willing to co-author the document.
==>MT I am willing to be a co-author of this document. Best, /Marco <==
Yours,
Logan and Daniel
On Mon, Mar 13, 2023 at 11:36 AM <internet-dra...@ietf.org> wrote:
A New Internet-Draft is available from the on-line Internet-Drafts
directories. This Internet-Draft is a work item of the
Authentication and
Authorization for Constrained Environments (ACE) WG of the IETF.
Title : Notification of Revoked Access Tokens in the
Authentication and Authorization for Constrained Environments
(ACE) Framework
Authors : Marco Tiloca
Ludwig Seitz
Francesca Palombini
Sebastian Echeverria
Grace Lewis
Filename : draft-ietf-ace-revoked-token-notification-04.txt
Pages : 59
Date : 2023-03-13
Abstract:
This document specifies a method of the Authentication and
Authorization for Constrained Environments (ACE) framework, which
allows an Authorization Server to notify Clients and Resource
Servers
(i.e., registered devices) about revoked Access Tokens. The method
allows Clients and Resource Servers to access a Token
Revocation List
on the Authorization Server, with the possible additional use of
resource observation for the Constrained Application Protocol
(CoAP).
Resulting (unsolicited) notifications of revoked Access Tokens
complement alternative approaches such as token introspection,
while
not requiring additional endpoints on Clients and Resource Servers.
The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-ace-revoked-token-notification/
<https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-ace-revoked-token-notification%2F&data=05%7C01%7Cmarco.tiloca%40ri.se%7C6e109d1b535245f2de8c08db23e98fd8%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638143258281813215%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=gYpZlIuI%2BzStJC5ry%2FAgPKsG0dsCQFlP6YvWA61JJV4%3D&reserved=0>
There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-ace-revoked-token-notification-04.html
<https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-ietf-ace-revoked-token-notification-04.html&data=05%7C01%7Cmarco.tiloca%40ri.se%7C6e109d1b535245f2de8c08db23e98fd8%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638143258281813215%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=8A%2FhfRSRo848%2BPuH9tENHNbjyZ5tLM1rbdbt%2FOEaBY8%3D&reserved=0>
A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-ace-revoked-token-notification-04
<https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fauthor-tools.ietf.org%2Fiddiff%3Furl2%3Ddraft-ietf-ace-revoked-token-notification-04&data=05%7C01%7Cmarco.tiloca%40ri.se%7C6e109d1b535245f2de8c08db23e98fd8%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638143258281813215%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=p7r7kMc09mEkD3tHNYmvwMygX0OmjHU1MlaThzk%2F7sk%3D&reserved=0>
Internet-Drafts are also available by rsync at
rsync.ietf.org::internet-drafts
_______________________________________________
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace
<https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Face&data=05%7C01%7Cmarco.tiloca%40ri.se%7C6e109d1b535245f2de8c08db23e98fd8%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638143258281813215%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=tSAD963p0DeiAAS9i%2B36yelXzJhthyVc57uwb5Xacu8%3D&reserved=0>
--
Daniel Migault
Ericsson
_______________________________________________
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace
-- Marco Tiloca Ph.D., Senior Researcher Phone: +46 (0)70 60 46 501 RISE Research Institutes of Sweden AB Box 1263 164 29 Kista (Sweden) Division: Digital Systems Department: Computer Science Unit: Cybersecurity https://www.ri.se
OpenPGP_0xEE2664B40E58DA43.asc
Description: OpenPGP public key
OpenPGP_signature
Description: OpenPGP digital signature
_______________________________________________ Ace mailing list Ace@ietf.org https://www.ietf.org/mailman/listinfo/ace
