{"draft":"draft-ietf-ace-aif-07","doc_id":"RFC9237","title":"An Authorization Information Format (AIF) for Authentication and Authorization for Constrained Environments (ACE)","authors":["C. Bormann"],"format":["HTML","TEXT","PDF","XML"],"page_count":"14","pub_status":"PROPOSED STANDARD","status":"PROPOSED STANDARD","source":"Authentication and Authorization for Constrained Environments","abstract":"Information about which entities are authorized to perform what\r\noperations on which constituents of other entities is a crucial\r\ncomponent of producing an overall system that is secure.  Conveying\r\nprecise authorization information is especially critical in highly\r\nautomated systems with large numbers of entities, such as the\r\nInternet of Things.\r\n\r\nThis specification provides a generic information model and format\r\nfor representing such authorization information, as well as two\r\nvariants of a specific instantiation of that format for use with\r\nRepresentational State Transfer (REST) resources identified by URI\r\npath.","pub_date":"August 2022","keywords":["OAuth","IoT","Internet of Things","Access Control"],"obsoletes":[],"obsoleted_by":[],"updates":[],"updated_by":[],"see_also":[],"doi":"10.17487\/RFC9237","errata_url":null}