Section 3 - Require Sender Constrained Tokens

Comments (7)

1. 

   Edmund Jay reporter

   • changed title to Section 3 - Require Sender Constrained Tokens

   • 2021-08-18T01:03:44+00:00
2. 

   Edmund Jay reporter

   • edited description

   • 2021-08-19T08:35:15+00:00
3. 

   Nat Sakimura

   On Nov. 16 call and in one of the previous call, callers pointed out that mandating sender constrained access token here is not a good idea as it would risk of being it ignored.

   • 2021-11-15T23:56:55+00:00
4. 

   Kristina Yasuda

   Alternative to mandating a sender-constrained Access Token like in PR #63 would be to prevent binding to arbitrary DIDs or arbitrary cryptographic material.

   We could pass a signature signed using a private key to which the user is requesting issued credential to be bound to as a proof. To prevent that proof from being replayed, we could pass that proof after receiving an access token and include hash of an access_token in that proof as a challenge.

   + I understand the importance from a security perspective, but I agree with the comment made during the Connect call that requiring mTLS and DPoP might be a high bar of a requirement that will scare implementor’s away

   (cc @Torsten Lodderstedt )

   • 2021-11-16T00:18:01+00:00
5. 

   Nat Sakimura

   • changed status to open

   Looks like there is no consensus on requiring sender constraint tokens throughout.

   • 2021-11-29T23:31:51+00:00
6. 

   Nat Sakimura

   The WG callers agreed on Dec 13/14 call if we are going to mandate sender constrained tokens, that probably should happen in the Core as Connect Core 1.1 or something with DPoP.

   • 2021-12-13T23:45:37+00:00
7. 

   Edmund Jay reporter

   • changed status to resolved

   fixes #1284 - Require Sender Constrained Tokens

   Removes mention of MTLS and DPoP per WG decision

   → <<cset 209db137c989>>

   • 2022-02-14T20:27:13+00:00
8. Log in to comment