Dear all,As anticipated during the presentation "Follow-Up Activities" at IETF 116, we have recently submitted a new Internet Draft draft-tiloca-ace-authcred-dtls-profile [1].
The document describes an update to the DTLS profile of ACE (RFC9202), for which it specifies the use of alternative public authentication credentials for the Client and Resource Server. These include CWT Claims Sets (CCSs) as alternative format of Raw Public Keys, as well as public key certificates (X.509 or C509).
Comments are welcome! Best, /Marco [1] https://datatracker.ietf.org/doc/draft-tiloca-ace-authcred-dtls-profile/ -------- Forwarded Message --------Subject: New Version Notification for draft-tiloca-ace-authcred-dtls-profile-00.txt
Date: Mon, 10 Jul 2023 09:37:03 -0700 From: internet-dra...@ietf.orgTo: John Preuß Mattsson <john.matts...@ericsson.com>, John Mattsson <john.matts...@ericsson.com>, Marco Tiloca <marco.til...@ri.se>
A new version of I-D, draft-tiloca-ace-authcred-dtls-profile-00.txt has been successfully submitted by Marco Tiloca and posted to the IETF repository. Name: draft-tiloca-ace-authcred-dtls-profile Revision: 00Title: Additional Authentication Credentials for the Datagram Transport Layer Security (DTLS) Profile for Authentication and Authorization for Constrained Environments (ACE)
Document date: 2023-07-10 Group: Individual Submission Pages: 14URL: https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-tiloca-ace-authcred-dtls-profile-00.txt&data=05%7C01%7Cmarco.tiloca%40ri.se%7Ca1981a3137664de9dcbb08db8163e5af%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638246038273205053%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=eglbEjwyary3WHJLgGx%2BaNqOyxI7YIn1WnIeLOZs%2FZA%3D&reserved=0 Status: https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-tiloca-ace-authcred-dtls-profile%2F&data=05%7C01%7Cmarco.tiloca%40ri.se%7Ca1981a3137664de9dcbb08db8163e5af%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638246038273205053%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=GsCTR7PIh2dIYSSgifv6lPoSwKUnIlio%2FcLH0h8SXqc%3D&reserved=0 Html: https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-tiloca-ace-authcred-dtls-profile-00.html&data=05%7C01%7Cmarco.tiloca%40ri.se%7Ca1981a3137664de9dcbb08db8163e5af%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638246038273205053%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=gbFcJqiL49J9c67B9lLE04r5xzd5RNEzhY3KmHrqT7s%3D&reserved=0 Htmlized: https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fhtml%2Fdraft-tiloca-ace-authcred-dtls-profile&data=05%7C01%7Cmarco.tiloca%40ri.se%7Ca1981a3137664de9dcbb08db8163e5af%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638246038273205053%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=9wlhFPUXPILOqmd6KW5rX%2BXCFHn0dD4nUIYQPrWMMJ0%3D&reserved=0
Abstract: This document updates the Datagram Transport Layer Security (DTLS) Profile for Authentication and Authorization for Constrained Environments (ACE). In particular, it specifies the use of additional formats of authentication credentials for establishing a DTLS session, when peer authentication is based on asymmetric cryptography. Therefore, this document updates RFC 9202. What is defined in this document is seamlessly applicable also if the profile uses Transport Layer Security (TLS) instead. The IETF Secretariat
OpenPGP_0xEE2664B40E58DA43.asc
Description: OpenPGP public key
OpenPGP_signature
Description: OpenPGP digital signature
_______________________________________________ Ace mailing list Ace@ietf.org https://www.ietf.org/mailman/listinfo/ace
