Hello ACE,We have recently submitted this new document draft-tiloca-ace-bidi-access-control, available at [1]:
"Bidirectional Access Control in the Authentication and Authorization for Constrained Environments (ACE) Framework"
The document defines a method to enforce bidirectional access control between C and RS accessing each other's resources, by means of a single access token, thereby updating RFC 9200.
Except for its Section 1 "Introduction", the content of this document has been taken out from the old version -03 of draft-ietf-ace-workflow-and-params [2].
This addresses the suggestion at IETF 121 from Dave Robin (thanks!), about having this topic as a self-standing document to consider separately from [2].
Comments are welcome! Best, /Marco[1] https://datatracker.ietf.org/doc/html/draft-tiloca-ace-bidi-access-control
[2] https://datatracker.ietf.org/doc/html/draft-ietf-ace-workflow-and-params -------- Forwarded Message --------Subject: New Version Notification for draft-tiloca-ace-bidi-access-control-00.txt
Date: Mon, 3 Mar 2025 06:36:51 -0800 From: internet-dra...@ietf.orgTo: Göran Selander <goran.selan...@ericsson.com>, Goeran Selander <goran.selan...@ericsson.com>, Marco Tiloca <marco.til...@ri.se>
A new version of Internet-Draft draft-tiloca-ace-bidi-access-control-00.txt has been successfully submitted by Marco Tiloca and posted to the IETF repository. Name: draft-tiloca-ace-bidi-access-control Revision: 00Title: Bidirectional Access Control in the Authentication and Authorization for Constrained Environments (ACE) Framework
Date: 2025-03-03 Group: Individual Submission Pages: 18URL: https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-tiloca-ace-bidi-access-control-00.txt&data=05%7C02%7Cmarco.tiloca%40ri.se%7C3f5f925abc934049861e08dd5a60d736%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638766094144007551%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=oLL2jPv66PmLq3hsfbSBoFHcX%2Bn5hIhWFFXjvVqSUQ8%3D&reserved=0 Status: https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-tiloca-ace-bidi-access-control%2F&data=05%7C02%7Cmarco.tiloca%40ri.se%7C3f5f925abc934049861e08dd5a60d736%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638766094144037712%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=mKgqKjfpZrRnRzgJ2tDeAzuCY9XlbClJA%2FtrPbxPK3w%3D&reserved=0 HTML: https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-tiloca-ace-bidi-access-control-00.html&data=05%7C02%7Cmarco.tiloca%40ri.se%7C3f5f925abc934049861e08dd5a60d736%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638766094144051543%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=aefYi3LriaAXFSjr73EEY5r%2BCb4vvRnSIIDTfqLROsQ%3D&reserved=0 HTMLized: https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fhtml%2Fdraft-tiloca-ace-bidi-access-control&data=05%7C02%7Cmarco.tiloca%40ri.se%7C3f5f925abc934049861e08dd5a60d736%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638766094144064288%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=c2YTnQF5L28PSXP2X7VGRptoRPTggKxlYaiaKvoHa0E%3D&reserved=0
Abstract: This document updates the Authentication and Authorization for Constrained Environments (ACE) framework, for which it defines a method to enforce bidirectional access control by means of a single access token. Therefore, this document updates RFC 9200. The IETF Secretariat
OpenPGP_0xEE2664B40E58DA43.asc
Description: OpenPGP public key
OpenPGP_signature.asc
Description: OpenPGP digital signature
_______________________________________________ Ace mailing list -- ace@ietf.org To unsubscribe send an email to ace-le...@ietf.org
