Internet-Draft draft-ietf-ace-edhoc-oscore-profile-09.txt is now available. It
is a work item of the Authentication and Authorization for Constrained
Environments (ACE) WG of the IETF.
Title: Ephemeral Diffie-Hellman Over COSE (EDHOC) and Object Security for
Constrained Environments (OSCORE) Profile for Authentication and Authorization
for Constrained Environments (ACE)
Authors: Göran Selander
John Preuß Mattsson
Marco Tiloca
Rikard Höglund
Name: draft-ietf-ace-edhoc-oscore-profile-09.txt
Pages: 91
Dates: 2025-10-20
Abstract:
This document specifies a profile for the Authentication and
Authorization for Constrained Environments (ACE) framework. It
utilizes Ephemeral Diffie-Hellman Over COSE (EDHOC) for achieving
mutual authentication between an ACE-OAuth client and resource
server, and it binds an authentication credential of the client to an
ACE-OAuth access token. EDHOC also establishes an Object Security
for Constrained RESTful Environments (OSCORE) Security Context, which
is used to secure communications between the client and resource
server when accessing protected resources according to the
authorization information indicated in the access token. This
profile can be used to delegate management of authorization
information from a resource-constrained server to a trusted host with
less severe limitations regarding processing power and memory.
The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-ace-edhoc-oscore-profile/
There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-ace-edhoc-oscore-profile-09.html
A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-ace-edhoc-oscore-profile-09
Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts
_______________________________________________
Ace mailing list -- [email protected]
To unsubscribe send an email to [email protected]
