openid / fapi / issues / #431 - FAPI 2.0 Baseline Attacker model not referenced. — Bitbucket

Issue #431 resolved

Ralph Bragg created an issue 2021-07-19

There is a missing reference to the attacker model in the FAPI 2.0 Baseline Specification.

2. Baseline Profile

OIDF FAPI is an API security profile based on the OAuth 2.0 Authorization Framework [RFC6749]. This Baseline Profile aims to reach the security goals laid out in the [Attacker Model].

‌

Comments (5)

Ralph Bragg reporter
- changed status to open
This reference needs to be added.
- 2021-07-19T07:56:51+00:00
Daniel Fett
I’ll prepare a PR to add a link (to the Bitbucket version).
- 2021-07-21T14:55:52+00:00
Daniel Fett
- changed status to resolved
Add references to Attacker Model to fix Issue ~~#431~~

→ <<cset 69034b520c44>>
- 2021-07-28T12:34:06+00:00
Daniel Fett
Merged in danielfett/issue-431 (pull request #284)

Add references to Attacker Model to fix Issue ~~#431~~

Approved-by: Dima Postnikov Approved-by: Ralph Bragg Approved-by: Joseph Heenan

→ <<cset 9ed39f2bdc6c>>
- 2021-07-30T10:18:42+00:00
Nat Sakimura
- changed component to FAPI2: Security Profile
- 2022-12-14T15:35:24+00:00
Log in to comment

Assignee: –

Type: task

Priority: major

Status: resolved

Component: FAPI2: Security Profile

Milestone: –

Votes: 0

Watchers: 1

Jira: the preferred issue tracker for Bitbucket. Join the team!