RFC 9594
Key Provisioning for Group Communication Using Authentication and Authorization for Constrained Environments (ACE), September 2024
- File formats:
- Also available: XML file for editing
- Status:
- PROPOSED STANDARD
- Authors:
- F. Palombini
M. Tiloca - Stream:
- IETF
- Source:
- ace (sec)
Cite this RFC: TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC9594
Discuss this RFC: Send questions or comments to the mailing list ace@ietf.org
Other actions: Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 9594
Abstract
This document defines how to use the Authentication and Authorization for Constrained Environments (ACE) framework to distribute keying material and configuration parameters for secure group communication. Candidate group members that act as Clients and are authorized to join a group can do so by interacting with a Key Distribution Center (KDC) acting as the Resource Server, from which they obtain the keying material to communicate with other group members. While defining general message formats as well as the interface and operations available at the KDC, this document supports different approaches and protocols for secure group communication. Therefore, details are delegated to separate application profiles of this document as specialized instances that target a particular group communication approach and define how communications in the group are protected. Compliance requirements for such application profiles are also specified.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.