Technical Summary
This document proposes the use of OAuth to obtain and validate
ephemeral tokens that can be used for Session Traversal Utilities
for NAT (STUN) authentication. The usage of ephemeral tokens
ensure that access to a STUN server can be controlled even if the
tokens are compromised.
Working Group Summary
This document proposes the use of OAuth to obtain and validate
ephemeral tokens that can be used for Session Traversal Utilities
for NAT (STUN) authentication. The usage of ephemeral tokens
ensure that access to a STUN server can be controlled even if the
tokens are compromised.
Document Quality
There are implementations of this draft. For example, coturn, which
is an open source implementation of TURN and STUN, includes this
functionality.
The IANA Considerations section registers two STUN attributes and
seems to be consistent with the body of the document.
Personnel
Gonzalo Camarillo is the document shepherd.
Spencer Dawkins is the responsible Area director.