OAuth 2.0 Proof-of-Possession (PoP) Security Architecture
draft-ietf-oauth-pop-architecture-08
Revision differences
Document history
Date | Rev. | By | Action |
---|---|---|---|
2017-01-09
|
08 | (System) | Document has expired |
2016-11-22
|
08 | Hannes Tschofenig | Added to session: IETF-97: oauth Mon-0930 |
2016-07-08
|
08 | Hannes Tschofenig | IANA Review state changed to Version Changed - Review Needed from IANA OK - No Actions Needed |
2016-07-08
|
08 | Hannes Tschofenig | New version available: draft-ietf-oauth-pop-architecture-08.txt |
2016-06-03
|
07 | (System) | Document has expired |
2016-06-03
|
07 | (System) | IESG state changed to Dead from AD is watching |
2015-12-22
|
07 | Gunter Van de Velde | Request for Last Call review by OPSDIR Completed: Has Nits. Reviewer: Lionel Morand. |
2015-12-22
|
07 | Gunter Van de Velde | Request for Last Call review by OPSDIR is assigned to Lionel Morand |
2015-12-22
|
07 | Gunter Van de Velde | Request for Last Call review by OPSDIR is assigned to Lionel Morand |
2015-12-22
|
07 | Gunter Van de Velde | Request for Last Call review by OPSDIR Completed: Ready. Reviewer: Ron Bonica. |
2015-12-22
|
07 | Gunter Van de Velde | Request for Last Call review by OPSDIR is assigned to Ron Bonica |
2015-12-22
|
07 | Gunter Van de Velde | Request for Last Call review by OPSDIR is assigned to Ron Bonica |
2015-12-22
|
07 | Gunter Van de Velde | Closed request for Telechat review by OPSDIR with state 'Withdrawn' |
2015-12-17
|
07 | Matthew Miller | Request for Telechat review by GENART Completed: Almost Ready. Reviewer: Matthew Miller. |
2015-12-17
|
07 | Tero Kivinen | Request for Telechat review by SECDIR Completed: Ready. Reviewer: Matt Lepinski. |
2015-12-15
|
07 | Kathleen Moriarty | IESG state changed to AD is watching from Waiting for AD Go-Ahead |
2015-12-15
|
07 | Kathleen Moriarty | Removed from agenda for telechat |
2015-12-15
|
07 | (System) | IESG state changed to Waiting for AD Go-Ahead from In Last Call |
2015-12-14
|
07 | Martin Stiemerling | [Ballot Position Update] New position, No Objection, has been recorded for Martin Stiemerling |
2015-12-13
|
07 | Kathleen Moriarty | Ballot has been issued |
2015-12-13
|
07 | Kathleen Moriarty | [Ballot Position Update] New position, Yes, has been recorded for Kathleen Moriarty |
2015-12-13
|
07 | Kathleen Moriarty | Created "Approve" ballot |
2015-12-13
|
07 | Kathleen Moriarty | Ballot writeup was changed |
2015-12-13
|
07 | Kathleen Moriarty | Notification list changed to draft-ietf-oauth-pop-architecture.all@tools.ietf.org |
2015-12-13
|
07 | Kathleen Moriarty | Changed consensus to Yes from Unknown |
2015-12-11
|
07 | (System) | IANA Review state changed to IANA OK - No Actions Needed from IANA - Review Needed |
2015-12-11
|
07 | Sabrina Tanamal | (Via drafts-lastcall-comment@iana.org): IESG/Authors/WG Chairs: IANA has reviewed draft-ietf-oauth-pop-architecture-07.txt, which is currently in Last Call, and has the following comments: We understand that this … (Via drafts-lastcall-comment@iana.org): IESG/Authors/WG Chairs: IANA has reviewed draft-ietf-oauth-pop-architecture-07.txt, which is currently in Last Call, and has the following comments: We understand that this document doesn't require any IANA actions. While it's often helpful for a document's IANA Considerations section to remain in place upon publication even if there are no actions, if the authors strongly prefer to remove it, IANA does not object. If this assessment is not accurate, please respond as soon as possible. Thank you, Sabrina Tanamal IANA Specialist ICANN |
2015-12-10
|
07 | Jean Mahoney | Request for Telechat review by GENART is assigned to Matthew Miller |
2015-12-10
|
07 | Jean Mahoney | Request for Telechat review by GENART is assigned to Matthew Miller |
2015-12-03
|
07 | Jean Mahoney | Request for Telechat review by GENART is assigned to Matthew Miller |
2015-12-03
|
07 | Jean Mahoney | Request for Telechat review by GENART is assigned to Matthew Miller |
2015-12-01
|
07 | Cindy Morgan | IANA Review state changed to IANA - Review Needed |
2015-12-01
|
07 | Cindy Morgan | The following Last Call announcement was sent out: From: The IESG To: "IETF-Announce" CC: Kathleen.Moriarty.ietf@gmail.com, kepeng.lkp@alibaba-inc.com, draft-ietf-oauth-pop-architecture@ietf.org, oauth-chairs@ietf.org, oauth@ietf.org Reply-To: ietf@ietf.org … The following Last Call announcement was sent out: From: The IESG To: "IETF-Announce" CC: Kathleen.Moriarty.ietf@gmail.com, kepeng.lkp@alibaba-inc.com, draft-ietf-oauth-pop-architecture@ietf.org, oauth-chairs@ietf.org, oauth@ietf.org Reply-To: ietf@ietf.org Sender: Subject: Last Call: (OAuth 2.0 Proof-of-Possession (PoP) Security Architecture) to Informational RFC The IESG has received a request from the Web Authorization Protocol WG (oauth) to consider the following document: - 'OAuth 2.0 Proof-of-Possession (PoP) Security Architecture' as Informational RFC The IESG plans to make a decision in the next few weeks, and solicits final comments on this action. Please send substantive comments to the ietf@ietf.org mailing lists by 2015-12-15. Exceptionally, comments may be sent to iesg@ietf.org instead. In either case, please retain the beginning of the Subject line to allow automated sorting. Abstract The OAuth 2.0 bearer token specification, as defined in RFC 6750, allows any party in possession of a bearer token (a "bearer") to get access to the associated resources (without demonstrating possession of a cryptographic key). To prevent misuse, bearer tokens must be protected from disclosure in transit and at rest. Some scenarios demand additional security protection whereby a client needs to demonstrate possession of cryptographic keying material when accessing a protected resource. This document motivates the development of the OAuth 2.0 proof-of-possession security mechanism. The file can be obtained via https://datatracker.ietf.org/doc/draft-ietf-oauth-pop-architecture/ IESG discussion can be tracked via https://datatracker.ietf.org/doc/draft-ietf-oauth-pop-architecture/ballot/ No IPR declarations have been submitted directly on this I-D. |
2015-12-01
|
07 | Cindy Morgan | IESG state changed to In Last Call from Last Call Requested |
2015-12-01
|
07 | Kathleen Moriarty | Last call was requested |
2015-12-01
|
07 | Kathleen Moriarty | Ballot approval text was generated |
2015-12-01
|
07 | Kathleen Moriarty | Ballot writeup was generated |
2015-12-01
|
07 | Kathleen Moriarty | IESG state changed to Last Call Requested from AD Evaluation |
2015-12-01
|
07 | Kathleen Moriarty | Last call announcement was generated |
2015-12-01
|
07 | Kathleen Moriarty | Last call announcement was generated |
2015-12-01
|
07 | Phil Hunt | New version available: draft-ietf-oauth-pop-architecture-07.txt |
2015-11-29
|
06 | Gunter Van de Velde | Request for Telechat review by OPSDIR is assigned to Lionel Morand |
2015-11-29
|
06 | Gunter Van de Velde | Request for Telechat review by OPSDIR is assigned to Lionel Morand |
2015-11-26
|
06 | Tero Kivinen | Request for Telechat review by SECDIR is assigned to Matt Lepinski |
2015-11-26
|
06 | Tero Kivinen | Request for Telechat review by SECDIR is assigned to Matt Lepinski |
2015-11-24
|
06 | Phil Hunt | New version available: draft-ietf-oauth-pop-architecture-06.txt |
2015-11-23
|
05 | Kathleen Moriarty | Placed on agenda for telechat - 2015-12-17 |
2015-11-16
|
05 | Kathleen Moriarty | IESG state changed to AD Evaluation from Publication Requested |
2015-11-02
|
05 | Hannes Tschofenig | Shepherd Writeup for draft-ietf-oauth-pop-architecture-05 1. Summary The document shepherd is Kepeng Li. The responsible Area Director is Kathleen Moriarty. This document describes an architecture extending … Shepherd Writeup for draft-ietf-oauth-pop-architecture-05 1. Summary The document shepherd is Kepeng Li. The responsible Area Director is Kathleen Moriarty. This document describes an architecture extending OAuth 2.0 security, which is today based on the use of bearer tokens (defined in RFC 6750). Some scenarios demand additional security protection whereby a client needs to demonstrate possession of cryptographic keying material when accessing a protected resource. This document motivates the development of the OAuth 2.0 proof-of-possession security mechanism. This specification is an Informational RFC describing the architecture and requirements. 2. Review and Consensus The document was initially developed by a design team and then accepted by the working group. There is strong consensus behind this work. No IANA actions are required and the document does not contain formal language. 3. Intellectual Property Each author has confirmed conformance with BCP 78/79. There are no IPR disclosures on the document. http://www.ietf.org/mail-archive/web/oauth/current/msg14981.html http://www.ietf.org/mail-archive/web/oauth/current/msg14982.html http://www.ietf.org/mail-archive/web/oauth/current/msg14983.html http://www.ietf.org/mail-archive/web/oauth/current/msg14984.html http://www.ietf.org/mail-archive/web/oauth/current/msg15061.html 4. Other Points This document contains (informative) references to technical specifications developed within the OAuth working group that offer the enhanced security functionality. |
2015-11-02
|
05 | Hannes Tschofenig | Responsible AD changed to Kathleen Moriarty |
2015-11-02
|
05 | Hannes Tschofenig | IETF WG state changed to Submitted to IESG for Publication from WG Document |
2015-11-02
|
05 | Hannes Tschofenig | IESG state changed to Publication Requested |
2015-11-02
|
05 | Hannes Tschofenig | IESG process started in state Publication Requested |
2015-10-20
|
05 | Kepeng Li | Changed document writeup |
2015-10-20
|
05 | Kepeng Li | Changed document writeup |
2015-10-19
|
05 | Phil Hunt | New version available: draft-ietf-oauth-pop-architecture-05.txt |
2015-10-19
|
04 | Hannes Tschofenig | New version available: draft-ietf-oauth-pop-architecture-04.txt |
2015-10-14
|
03 | (System) | Notify list changed from "Derek Atkins" , "Kepeng Li" to (None) |
2015-10-11
|
02 | Kepeng Li | Changed document writeup |
2015-10-11
|
02 | Kepeng Li | Changed document writeup |
2015-09-25
|
03 | Phil Hunt | New version available: draft-ietf-oauth-pop-architecture-03.txt |
2015-09-10
|
02 | Hannes Tschofenig | Notification list changed to "Derek Atkins" <derek@ihtfp.com>, "Kepeng Li" <kepeng.lkp@alibaba-inc.com> from "Derek Atkins" <derek@ihtfp.com> |
2015-09-10
|
02 | Hannes Tschofenig | Document shepherd changed to Kepeng Li |
2015-07-06
|
02 | Hannes Tschofenig | New version available: draft-ietf-oauth-pop-architecture-02.txt |
2015-03-03
|
01 | Hannes Tschofenig | New version available: draft-ietf-oauth-pop-architecture-01.txt |
2015-01-13
|
00 | Hannes Tschofenig | Intended Status changed to Informational from None |
2015-01-13
|
00 | Hannes Tschofenig | Notification list changed to "Derek Atkins" <derek@ihtfp.com> |
2015-01-13
|
00 | Hannes Tschofenig | Document shepherd changed to Derek Atkins |
2014-08-25
|
00 | Hannes Tschofenig | This document now replaces draft-hunt-oauth-pop-architecture instead of None |
2014-07-21
|
00 | Hannes Tschofenig | New version available: draft-ietf-oauth-pop-architecture-00.txt |