Access Control Framework for Constrained Environments

Document Type Expired Internet-Draft (individual)
Authors Göran Selander  , Mohit Sethi  , Ludwig Seitz 
Last updated 2014-08-18 (latest revision 2014-02-14)
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


The Constrained Application Protocol (CoAP) is a light-weight web transfer protocol designed to be used in constrained environments. Transport layer security for CoAP has been addressed with a DTLS binding for CoAP. This document describes a generic and dynamic access control framework suitable for constrained devices e.g. using CoAP and DTLS. The framework builds on well known paradigms for access control, externalizing authorization decision making to unconstrained nodes while performing authorization decision enforcement and verification of local conditions in constrained devices.


Göran Selander (
Mohit Sethi (
Ludwig Seitz (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)