@misc{rfc8898,
    series =    {Request for Comments},
    number =    8898,
    howpublished =  {RFC 8898},
    publisher = {RFC Editor},
    doi =       {10.17487/RFC8898},
    url =       {https://www.rfc-editor.org/info/rfc8898},
    author =    {Rifaat Shekh-Yusef and Christer Holmberg and Victor Pascual},
    title =     {{Third-Party Token-Based Authentication and Authorization for Session Initiation Protocol (SIP)}},
    pagetotal = 15,
    year =      2020,
    month =     sep,
    abstract =  {This document defines the "Bearer" authentication scheme for the Session Initiation Protocol (SIP) and a mechanism by which user authentication and SIP registration authorization is delegated to a third party, using the OAuth 2.0 framework and OpenID Connect Core 1.0. This document updates RFC 3261 to provide guidance on how a SIP User Agent Client (UAC) responds to a SIP 401/407 response that contains multiple WWW-Authenticate/Proxy-Authenticate header fields.},
}