RFC 8417

Security Event Token (SET), July 2018

Canonical URL:
https://www.rfc-editor.org/rfc/rfc8417.txt
File formats:
Plain TextPDF
Status:
PROPOSED STANDARD
Authors:
P. Hunt, Ed.
M. Jones
W. Denniss
M. Ansari
Stream:
IETF
Source:
secevent (sec)

Cite this RFC: TXT  |  XML

DOI:  10.17487/RFC8417

Discuss this RFC: Send questions or comments to id-event@ietf.org

Other actions: Submit Errata  |  Find IPR Disclosures from the IETF


Abstract

This specification defines the Security Event Token (SET) data structure. A SET describes statements of fact from the perspective of an issuer about a subject. These statements of fact represent an event that occurred directly to or about a security subject, for example, a statement about the issuance or revocation of a token on behalf of a subject. This specification is intended to enable representing security- and identity-related events. A SET is a JSON Web Token (JWT), which can be optionally signed and/or encrypted. SETs can be distributed via protocols such as HTTP.


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 4844.


Download PDF Reader