Dear Ace,
We made the following changes to the pub-sub draft with Marco:
* Clarified use of "application groups".
* Revised use of protocols and transport profiles with Broker and KDC.
* Revised presentation of authorization flow.
* Subscribers cannot be anonymous anymore.
* Revised scope definition.
* Revised Join Response.
* Revised COSE countersignature, COSE encrypt objects.
* Clarified, revised, and made editorial improvements throughout.
Kind regards,
--Cigdem
On Wed, 13 Sept 2023 at 23:40, <[email protected]> wrote:
> Internet-Draft draft-ietf-ace-pubsub-profile-07.txt is now available. It
> is a
> work item of the Authentication and Authorization for Constrained
> Environments
> (ACE) WG of the IETF.
>
> Title: Publish-Subscribe Profile for Authentication and Authorization
> for Constrained Environments (ACE)
> Authors: Francesca Palombini
> Cigdem Sengul
> Marco Tiloca
> Name: draft-ietf-ace-pubsub-profile-07.txt
> Pages: 43
> Dates: 2023-09-13
>
> Abstract:
>
> This document defines an application profile of the Authentication
> and Authorization for Constrained Environments (ACE) framework, to
> enable secure group communication in the Publish-Subscribe (pub/sub)
> architecture for the Constrained Application Protocol (CoAP) [draft-
> ietf-core-coap-pubsub], where Publishers and Subscribers communicate
> through a Broker. This profile relies on protocol-specific transport
> profiles of ACE to achieve communication security, server
> authentication, and proof-of-possession for a key owned by the Client
> and bound to an OAuth 2.0 Access Token. This document specifies the
> provisioning and enforcement of authorization information for Clients
> to act as Publishers and/or Subscribers, as well as the provisioning
> of keying material and security parameters that Clients use for
> protecting their communications end-to-end through the Broker.
>
> Note to RFC Editor: Please replace "[draft-ietf-core-coap-pubsub]"
> with the RFC number of that document and delete this paragraph.
>
> The IETF datatracker status page for this Internet-Draft is:
> https://datatracker.ietf.org/doc/draft-ietf-ace-pubsub-profile/
>
> There is also an HTML version available at:
> https://www.ietf.org/archive/id/draft-ietf-ace-pubsub-profile-07.html
>
> A diff from the previous version is available at:
> https://author-tools.ietf.org/iddiff?url2=draft-ietf-ace-pubsub-profile-07
>
> Internet-Drafts are also available by rsync at:
> rsync.ietf.org::internet-drafts
>
>
> _______________________________________________
> Ace mailing list
> [email protected]
> https://www.ietf.org/mailman/listinfo/ace
>
_______________________________________________
Ace mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ace
