Search RFCs
RFC 7831
Application Bridging for Federated Access Beyond Web (ABFAB) Architecture,May 2016
- File formats:
- Status:
- INFORMATIONAL
- Authors:
- J. Howlett
S. Hartman
H. Tschofenig
J. Schaad - Stream:
- IETF
- Source:
- abfab (sec)
Cite this RFC:TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC7831
Discuss this RFC: Send questions or comments to the mailing listabfab@ietf.org
Other actions:Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 7831
Abstract
Over the last decade, a substantial amount of work has occurred inthe space of federated access management. Most of this effort hasfocused on two use cases: network access and web-based access.However, the solutions to these use cases that have been proposed anddeployed tend to have few building blocks in common.
This memo describes an architecture that makes use of extensions tothe commonly used security mechanisms for both federated andnon-federated access management, including the Remote AuthenticationDial-In User Service (RADIUS), the Generic Security ServiceApplication Program Interface (GSS-API), the ExtensibleAuthentication Protocol (EAP), and the Security Assertion MarkupLanguage (SAML). The architecture addresses the problem of federatedaccess management to primarily non-web-based services, in a mannerthat will scale to large numbers of Identity Providers, RelyingParties, and federations.
For the definition ofStatus,seeRFC 2026.
For the definition ofStream, seeRFC 8729.