{
  "draft": "draft-ietf-ace-oauth-authz-46",
  "doc_id": "RFC9200",
  "title": "Authentication and Authorization for Constrained Environments Using the OAuth 2.0 Framework (ACE-OAuth)",
  "authors": [
    "L. Seitz",
    "G. Selander",
    "E. Wahlstroem",
    "S. Erdtman",
    "H. Tschofenig"
  ],
  "format": [
    "XML",
    "TEXT",
    "HTML",
    "PDF"
  ],
  "page_count": "72",
  "pub_status": "PROPOSED STANDARD",
  "status": "PROPOSED STANDARD",
  "source": "Authentication and Authorization for Constrained Environments",
  "abstract": "This specification defines a framework for authentication and authorization in Internet of Things (IoT) environments called ACE-OAuth.  The framework is based on a set of building blocks including OAuth 2.0 and the Constrained Application Protocol (CoAP), thus transforming a well-known and widely used authorization solution into a form suitable for IoT devices.  Existing specifications are used where possible, but extensions are added and profiles are defined to better serve the IoT use cases.",
  "pub_date": "August 2022",
  "keywords": [
    "CoAP",
    "OAuth 2.0",
    "Access Control",
    "Authorization",
    "Internet of Things"
  ],
  "obsoletes": [],
  "obsoleted_by": [],
  "updates": [],
  "updated_by": [],
  "see_also": [],
  "doi": "10.17487/RFC9200",
  "errata_url": "https://www.rfc-editor.org/errata/rfc9200"
}