Search RFCs
RFC 9431
Message Queuing Telemetry Transport (MQTT) and Transport Layer Security (TLS) Profile of Authentication and Authorization for Constrained Environments (ACE) Framework,July 2023
- File formats:
- Also available:XML file for editing
- Status:
- PROPOSED STANDARD
- Authors:
- C. Sengul
A. Kirby - Stream:
- IETF
- Source:
- ace (sec)
Cite this RFC:TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC9431
Discuss this RFC: Send questions or comments to the mailing listace@ietf.org
Other actions:Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 9431
Abstract
This document specifies a profile for the Authentication andAuthorization for Constrained Environments (ACE) framework to enableauthorization in a publish-subscribe messaging system based onMessage Queuing Telemetry Transport (MQTT). Proof-of-Possession keys,bound to OAuth 2.0 access tokens, are used to authenticate andauthorize MQTT Clients. The protocol relies on TLS forconfidentiality and MQTT server (Broker) authentication.
For the definition ofStatus,seeRFC 2026.
For the definition ofStream, seeRFC 8729.