Movatterモバイル変換

[0]ホーム

	testing_dl.html	testing_dl.prepped.html

	skipping to change at line 17 ¶	skipping to change at line 17 ¶
	<title>RFC 9999: WebRTC Security Architecture</title>	<title>RFC 9999: WebRTC Security Architecture</title>
	<meta content="Eric Rescorla" name="author">	<meta content="Eric Rescorla" name="author">
	<meta content='	<meta content='

	This document defines the security architecture for WebRTC, a protocol	This document defines the security architecture for WebRTC, a protocol
	suite intended for use with real-time applications that can be deployed	suite intended for use with real-time applications that can be deployed
	in browsers - "real time communication on the Web".	in browsers - "real time communication on the Web".

	' name="description">	' name="description">
	<meta content="xml2rfc 2.24.0" name="generator">	<meta content="xml2rfc 2.24.0" name="generator">

	<link href="testing_dl.xml" type="application/rfc+xml" rel="alternate">	<link href="testing_dl.prepped.xml" type="application/rfc+xml" rel="alternate">
	<link href="#copyright" rel="license">	<link href="#copyright" rel="license">
	<style type="text/css">/* fonts */	<style type="text/css">/* fonts */
	@import url('https://fonts.googleapis.com/css?family=Noto+Sans'); /* Sans-serif */	@import url('https://fonts.googleapis.com/css?family=Noto+Sans'); /* Sans-serif */
	@import url('https://fonts.googleapis.com/css?family=Noto+Serif'); /* Serif (print) */	@import url('https://fonts.googleapis.com/css?family=Noto+Serif'); /* Serif (print) */
	@import url('https://fonts.googleapis.com/css?family=Roboto+Mono'); /* Monospace */	@import url('https://fonts.googleapis.com/css?family=Roboto+Mono'); /* Monospace */

	@-ms-viewport {	@-ms-viewport {
	width: extend-to-zoom;	width: extend-to-zoom;
	zoom: 1.0;	zoom: 1.0;
	}	}

	skipping to change at line 1028 ¶	skipping to change at line 1028 ¶
	into languages other than English.<a href="#section-boilerplate.2-3">¶</a></p>	into languages other than English.<a href="#section-boilerplate.2-3">¶</a></p>
	</section>	</section>
	</div>	</div>
	<div>	<div>
	<section>	<section>
	<a href="#">▲</a><h2>	<a href="#">▲</a><h2>
	<a href="#name-table-of-contents">Table of Contents</a>	<a href="#name-table-of-contents">Table of Contents</a>
	</h2>	</h2>
	<nav><ul>	<nav><ul>
	<li>	<li>

	<p><a href="#section-1">1</a>. <a href="#name-introduction">Introduction</a><a href="#section-boilerplate.3-1.1.1">¶</a></p>	<p><a href="#section-1">1</a>. <span><a href="#name-introduction">Introduction</a> (<a href="#name-introduction">name-introduction</a>)</span><a href="#section-boilerplate.3-1.1.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-2">2</a>. <a href="#name-terminology">Terminology</a><a href="#section-boilerplate.3-1.2.1">¶</a></p>	<p><a href="#section-2">2</a>. <span><a href="#name-terminology">Terminology</a> (<a href="#name-terminology">name-terminology</a>)</span><a href="#section-boilerplate.3-1.2.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-3">3</a>. <a href="#name-trust-model">Trust Model</a><a href="#section-boilerplate.3-1.3.1">¶</a></p>	<p><a href="#section-3">3</a>. <span><a href="#name-trust-model">Trust Model</a> (<a href="#name-trust-model">name-trust-model</a>)</span><a href="#section-boilerplate.3-1.3.1">¶</a></p>
	<ul>	<ul>
	<li>	<li>

	<p><a href="#section-3.1">3.1</a>. <a href="#name-authenticated-entities">Authenticated Entities</a><a href="#section-boilerplate.3-1.3.2.1.1">¶</a></p>	<p><a href="#section-3.1">3.1</a>. <span><a href="#name-authenticated-entities">Authenticated Entities</a> (<a href="#name-authenticated-entities">name-authenticated-entities</a>)</span><a href="#section-boilerplate.3-1.3.2.1.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-3.2">3.2</a>. <a href="#name-unauthenticated-entities">Unauthenticated Entities</a><a href="#section-boilerplate.3-1.3.2.2.1">¶</a></p>	<p><a href="#section-3.2">3.2</a>. <span><a href="#name-unauthenticated-entities">Unauthenticated Entities</a> (<a href="#name-unauthenticated-entities">name-unauthenticated-entities</a>)</span><a href="#section-boilerplate.3-1.3.2.2.1">¶</a></p>
	</li>	</li>
	</ul>	</ul>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-4">4</a>. <a href="#name-overview">Overview</a><a href="#section-boilerplate.3-1.4.1">¶</a></p>	<p><a href="#section-4">4</a>. <span><a href="#name-overview">Overview</a> (<a href="#name-overview">name-overview</a>)</span><a href="#section-boilerplate.3-1.4.1">¶</a></p>
	<ul>	<ul>
	<li>	<li>

	<p><a href="#section-4.1">4.1</a>. <a href="#name-initial-signaling">Initial Signaling</a><a href="#section-boilerplate.3-1.4.2.1.1">¶</a></p>	<p><a href="#section-4.1">4.1</a>. <span><a href="#name-initial-signaling">Initial Signaling</a> (<a href="#name-initial-signaling">name-initial-signaling</a>)</span><a href="#section-boilerplate.3-1.4.2.1.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-4.2">4.2</a>. <a href="#name-media-consent-verification">Media Consent Verification</a><a href="#section-boilerplate.3-1.4.2.2.1">¶</a></p>	<p><a href="#section-4.2">4.2</a>. <span><a href="#name-media-consent-verification">Media Consent Verification</a> (<a href="#name-media-consent-verification">name-media-consent-verification</a>)</span><a href="#section-boilerplate.3-1.4.2.2.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-4.3">4.3</a>. <a href="#name-dtls-handshake">DTLS Handshake</a><a href="#section-boilerplate.3-1.4.2.3.1">¶</a></p>	<p><a href="#section-4.3">4.3</a>. <span><a href="#name-dtls-handshake">DTLS Handshake</a> (<a href="#name-dtls-handshake">name-dtls-handshake</a>)</span><a href="#section-boilerplate.3-1.4.2.3.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-4.4">4.4</a>. <a href="#name-communications-and-consent-">Communications and Consent Freshness</a><a href="#section-boilerplate.3-1.4.2.4.1">¶</a></p>	<p><a href="#section-4.4">4.4</a>. <span><a href="#name-communications-and-consent-">Communications and Consent Freshness</a> (<a href="#name-communications-and-consent-">name-communications-and-consent-</a>)</span><a href="#section-boilerplate.3-1.4.2.4.1">¶</a></p>
	</li>	</li>
	</ul>	</ul>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-5">5</a>. <a href="#name-sdp-identity-attribute">SDP Identity Attribute</a><a href="#section-boilerplate.3-1.5.1">¶</a></p>	<p><a href="#section-5">5</a>. <span><a href="#name-sdp-identity-attribute">SDP Identity Attribute</a> (<a href="#name-sdp-identity-attribute">name-sdp-identity-attribute</a>)</span><a href="#section-boilerplate.3-1.5.1">¶</a></p>
	<ul>	<ul>
	<li>	<li>

	<p><a href="#section-5.1">5.1</a>. <a href="#name-offer-answer-considerations">Offer/Answer Considerations</a><a href="#section-boilerplate.3-1.5.2.1.1">¶</a></p>	<p><a href="#section-5.1">5.1</a>. <span><a href="#name-offer-answer-considerations">Offer/Answer Considerations</a> (<a href="#name-offer-answer-considerations">name-offer-answer-considerations</a>)</span><a href="#section-boilerplate.3-1.5.2.1.1">¶</a></p>
	<ul>	<ul>
	<li>	<li>

	<p><a href="#section-5.1.1">5.1.1</a>. <a href="#name-generating-the-initial-sdp-">Generating the Initial SDP Offer</a><a href="#section-boilerplate.3-1.5.2.1.2.1.1">¶</a></p>	<p><a href="#section-5.1.1">5.1.1</a>. <span><a href="#name-generating-the-initial-sdp-">Generating the Initial SDP Offer</a> (<a href="#name-generating-the-initial-sdp-">name-generating-the-initial-sdp-</a>)</span><a href="#section-boilerplate.3-1.5.2.1.2.1.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-5.1.2">5.1.2</a>. <a href="#name-generating-of-sdp-answer">Generating of SDP Answer</a><a href="#section-boilerplate.3-1.5.2.1.2.2.1">¶</a></p>	<p><a href="#section-5.1.2">5.1.2</a>. <span><a href="#name-generating-of-sdp-answer">Generating of SDP Answer</a> (<a href="#name-generating-of-sdp-answer">name-generating-of-sdp-answer</a>)</span><a href="#section-boilerplate.3-1.5.2.1.2.2.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-5.1.3">5.1.3</a>. <a href="#name-processing-an-sdp-offer-or-">Processing an SDP Offer or Answer</a><a href="#section-boilerplate.3-1.5.2.1.2.3.1">¶</a></p>	<p><a href="#section-5.1.3">5.1.3</a>. <span><a href="#name-processing-an-sdp-offer-or-">Processing an SDP Offer or Answer</a> (<a href="#name-processing-an-sdp-offer-or-">name-processing-an-sdp-offer-or-</a>)</span><a href="#section-boilerplate.3-1.5.2.1.2.3.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-5.1.4">5.1.4</a>. <a href="#name-modifying-the-session">Modifying the Session</a><a href="#section-boilerplate.3-1.5.2.1.2.4.1">¶</a></p>	<p><a href="#section-5.1.4">5.1.4</a>. <span><a href="#name-modifying-the-session">Modifying the Session</a> (<a href="#name-modifying-the-session">name-modifying-the-session</a>)</span><a href="#section-boilerplate.3-1.5.2.1.2.4.1">¶</a></p>
	</li>	</li>
	</ul>	</ul>
	</li>	</li>
	</ul>	</ul>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-6">6</a>. <a href="#name-detailed-technical-descript">Detailed Technical Description</a><a href="#section-boilerplate.3-1.6.1">¶</a></p>	<p><a href="#section-6">6</a>. <span><a href="#name-detailed-technical-descript">Detailed Technical Description</a> (<a href="#name-detailed-technical-descript">name-detailed-technical-descript</a>)</span><a href="#section-boilerplate.3-1.6.1">¶</a></p>
	<ul>	<ul>
	<li>	<li>

	<p><a href="#section-6.1">6.1</a>. <a href="#name-origin-and-web-security-iss">Origin and Web Security Issues</a><a href="#section-boilerplate.3-1.6.2.1.1">¶</a></p>	<p><a href="#section-6.1">6.1</a>. <span><a href="#name-origin-and-web-security-iss">Origin and Web Security Issues</a> (<a href="#name-origin-and-web-security-iss">name-origin-and-web-security-iss</a>)</span><a href="#section-boilerplate.3-1.6.2.1.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-6.2">6.2</a>. <a href="#name-device-permissions-model">Device Permissions Model</a><a href="#section-boilerplate.3-1.6.2.2.1">¶</a></p>	<p><a href="#section-6.2">6.2</a>. <span><a href="#name-device-permissions-model">Device Permissions Model</a> (<a href="#name-device-permissions-model">name-device-permissions-model</a>)</span><a href="#section-boilerplate.3-1.6.2.2.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-6.3">6.3</a>. <a href="#name-communications-consent">Communications Consent</a><a href="#section-boilerplate.3-1.6.2.3.1">¶</a></p>	<p><a href="#section-6.3">6.3</a>. <span><a href="#name-communications-consent">Communications Consent</a> (<a href="#name-communications-consent">name-communications-consent</a>)</span><a href="#section-boilerplate.3-1.6.2.3.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-6.4">6.4</a>. <a href="#name-ip-location-privacy">IP Location Privacy</a><a href="#section-boilerplate.3-1.6.2.4.1">¶</a></p>	<p><a href="#section-6.4">6.4</a>. <span><a href="#name-ip-location-privacy">IP Location Privacy</a> (<a href="#name-ip-location-privacy">name-ip-location-privacy</a>)</span><a href="#section-boilerplate.3-1.6.2.4.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-6.5">6.5</a>. <a href="#name-communications-security">Communications Security</a><a href="#section-boilerplate.3-1.6.2.5.1">¶</a></p>	<p><a href="#section-6.5">6.5</a>. <span><a href="#name-communications-security">Communications Security</a> (<a href="#name-communications-security">name-communications-security</a>)</span><a href="#section-boilerplate.3-1.6.2.5.1">¶</a></p>
	</li>	</li>
	</ul>	</ul>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-7">7</a>. <a href="#name-web-based-peer-authenticati">Web-Based Peer Authentication</a><a href="#section-boilerplate.3-1.7.1">¶</a></p>	<p><a href="#section-7">7</a>. <span><a href="#name-web-based-peer-authenticati">Web-Based Peer Authentication</a> (<a href="#name-web-based-peer-authenticati">name-web-based-peer-authenticati</a>)</span><a href="#section-boilerplate.3-1.7.1">¶</a></p>
	<ul>	<ul>
	<li>	<li>

	<p><a href="#section-7.1">7.1</a>. <a href="#name-trust-relationships-idps-ap">Trust Relationships: IdPs, APs, and RPs</a><a href="#section-boilerplate.3-1.7.2.1.1">¶</a></p>	<p><a href="#section-7.1">7.1</a>. <span><a href="#name-trust-relationships-idps-ap">Trust Relationships: IdPs, APs, and RPs</a> (<a href="#name-trust-relationships-idps-ap">name-trust-relationships-idps-ap</a>)</span><a href="#section-boilerplate.3-1.7.2.1.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-7.2">7.2</a>. <a href="#name-overview-of-operation">Overview of Operation</a><a href="#section-boilerplate.3-1.7.2.2.1">¶</a></p>	<p><a href="#section-7.2">7.2</a>. <span><a href="#name-overview-of-operation">Overview of Operation</a> (<a href="#name-overview-of-operation">name-overview-of-operation</a>)</span><a href="#section-boilerplate.3-1.7.2.2.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-7.3">7.3</a>. <a href="#name-items-for-standardization">Items for Standardization</a><a href="#section-boilerplate.3-1.7.2.3.1">¶</a></p>	<p><a href="#section-7.3">7.3</a>. <span><a href="#name-items-for-standardization">Items for Standardization</a> (<a href="#name-items-for-standardization">name-items-for-standardization</a>)</span><a href="#section-boilerplate.3-1.7.2.3.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-7.4">7.4</a>. <a href="#name-binding-identity-assertions">Binding Identity Assertions to JSEP Offer/Answer Transactions</a><a href="#section-boilerplate.3-1.7.2.4.1">¶</a></p>	<p><a href="#section-7.4">7.4</a>. <span><a href="#name-binding-identity-assertions">Binding Identity Assertions to JSEP Offer/Answer Transactions</a> (<a href="#name-binding-identity-assertions">name-binding-identity-assertions</a>)</span><a href="#section-boilerplate.3-1.7.2.4.1">¶</a></p>
	<ul>	<ul>
	<li>	<li>

	<p><a href="#section-7.4.1">7.4.1</a>. <a href="#name-carrying-identity-assertion">Carrying Identity Assertions</a><a href="#section-boilerplate.3-1.7.2.4.2.1.1">¶</a></p>	<p><a href="#section-7.4.1">7.4.1</a>. <span><a href="#name-carrying-identity-assertion">Carrying Identity Assertions</a> (<a href="#name-carrying-identity-assertion">name-carrying-identity-assertion</a>)</span><a href="#section-boilerplate.3-1.7.2.4.2.1.1">¶</a></p>
	</li>	</li>
	</ul>	</ul>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-7.5">7.5</a>. <a href="#name-determining-the-idp-uri">Determining the IdP URI</a><a href="#section-boilerplate.3-1.7.2.5.1">¶</a></p>	<p><a href="#section-7.5">7.5</a>. <span><a href="#name-determining-the-idp-uri">Determining the IdP URI</a> (<a href="#name-determining-the-idp-uri">name-determining-the-idp-uri</a>)</span><a href="#section-boilerplate.3-1.7.2.5.1">¶</a></p>
	<ul>	<ul>
	<li>	<li>

	<p><a href="#section-7.5.1">7.5.1</a>. <a href="#name-authenticating-party">Authenticating Party</a><a href="#section-boilerplate.3-1.7.2.5.2.1.1">¶</a></p>	<p><a href="#section-7.5.1">7.5.1</a>. <span><a href="#name-authenticating-party">Authenticating Party</a> (<a href="#name-authenticating-party">name-authenticating-party</a>)</span><a href="#section-boilerplate.3-1.7.2.5.2.1.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-7.5.2">7.5.2</a>. <a href="#name-relying-party">Relying Party</a><a href="#section-boilerplate.3-1.7.2.5.2.2.1">¶</a></p>	<p><a href="#section-7.5.2">7.5.2</a>. <span><a href="#name-relying-party">Relying Party</a> (<a href="#name-relying-party">name-relying-party</a>)</span><a href="#section-boilerplate.3-1.7.2.5.2.2.1">¶</a></p>
	</li>	</li>
	</ul>	</ul>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-7.6">7.6</a>. <a href="#name-requesting-assertions">Requesting Assertions</a><a href="#section-boilerplate.3-1.7.2.6.1">¶</a></p>	<p><a href="#section-7.6">7.6</a>. <span><a href="#name-requesting-assertions">Requesting Assertions</a> (<a href="#name-requesting-assertions">name-requesting-assertions</a>)</span><a href="#section-boilerplate.3-1.7.2.6.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-7.7">7.7</a>. <a href="#name-managing-user-login">Managing User Login</a><a href="#section-boilerplate.3-1.7.2.7.1">¶</a></p>	<p><a href="#section-7.7">7.7</a>. <span><a href="#name-managing-user-login">Managing User Login</a> (<a href="#name-managing-user-login">name-managing-user-login</a>)</span><a href="#section-boilerplate.3-1.7.2.7.1">¶</a></p>
	</li>	</li>
	</ul>	</ul>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-8">8</a>. <a href="#name-verifying-assertions">Verifying Assertions</a><a href="#section-boilerplate.3-1.8.1">¶</a></p>	<p><a href="#section-8">8</a>. <span><a href="#name-verifying-assertions">Verifying Assertions</a> (<a href="#name-verifying-assertions">name-verifying-assertions</a>)</span><a href="#section-boilerplate.3-1.8.1">¶</a></p>
	<ul>	<ul>
	<li>	<li>

	<p><a href="#section-8.1">8.1</a>. <a href="#name-identity-formats">Identity Formats</a><a href="#section-boilerplate.3-1.8.2.1.1">¶</a></p>	<p><a href="#section-8.1">8.1</a>. <span><a href="#name-identity-formats">Identity Formats</a> (<a href="#name-identity-formats">name-identity-formats</a>)</span><a href="#section-boilerplate.3-1.8.2.1.1">¶</a></p>
	</li>	</li>
	</ul>	</ul>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-9">9</a>. <a href="#name-security-considerations">Security Considerations</a><a href="#section-boilerplate.3-1.9.1">¶</a></p>	<p><a href="#section-9">9</a>. <span><a href="#name-security-considerations">Security Considerations</a> (<a href="#name-security-considerations">name-security-considerations</a>)</span><a href="#section-boilerplate.3-1.9.1">¶</a></p>
	<ul>	<ul>
	<li>	<li>

	<p><a href="#section-9.1">9.1</a>. <a href="#name-communications-security-2">Communications Security</a><a href="#section-boilerplate.3-1.9.2.1.1">¶</a></p>	<p><a href="#section-9.1">9.1</a>. <span><a href="#name-communications-security-2">Communications Security</a> (<a href="#name-communications-security-2">name-communications-security-2</a>)</span><a href="#section-boilerplate.3-1.9.2.1.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-9.2">9.2</a>. <a href="#name-privacy">Privacy</a><a href="#section-boilerplate.3-1.9.2.2.1">¶</a></p>	<p><a href="#section-9.2">9.2</a>. <span><a href="#name-privacy">Privacy</a> (<a href="#name-privacy">name-privacy</a>)</span><a href="#section-boilerplate.3-1.9.2.2.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-9.3">9.3</a>. <a href="#name-denial-of-service">Denial of Service</a><a href="#section-boilerplate.3-1.9.2.3.1">¶</a></p>	<p><a href="#section-9.3">9.3</a>. <span><a href="#name-denial-of-service">Denial of Service</a> (<a href="#name-denial-of-service">name-denial-of-service</a>)</span><a href="#section-boilerplate.3-1.9.2.3.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-9.4">9.4</a>. <a href="#name-idp-authentication-mechanis">IdP Authentication Mechanism</a><a href="#section-boilerplate.3-1.9.2.4.1">¶</a></p>	<p><a href="#section-9.4">9.4</a>. <span><a href="#name-idp-authentication-mechanis">IdP Authentication Mechanism</a> (<a href="#name-idp-authentication-mechanis">name-idp-authentication-mechanis</a>)</span><a href="#section-boilerplate.3-1.9.2.4.1">¶</a></p>
	<ul>	<ul>
	<li>	<li>

	<p><a href="#section-9.4.1">9.4.1</a>. <a href="#name-peerconnection-origin-check">PeerConnection Origin Check</a><a href="#section-boilerplate.3-1.9.2.4.2.1.1">¶</a></p>	<p><a href="#section-9.4.1">9.4.1</a>. <span><a href="#name-peerconnection-origin-check">PeerConnection Origin Check</a> (<a href="#name-peerconnection-origin-check">name-peerconnection-origin-check</a>)</span><a href="#section-boilerplate.3-1.9.2.4.2.1.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-9.4.2">9.4.2</a>. <a href="#name-idp-well-known-uri">IdP Well-known URI</a><a href="#section-boilerplate.3-1.9.2.4.2.2.1">¶</a></p>	<p><a href="#section-9.4.2">9.4.2</a>. <span><a href="#name-idp-well-known-uri">IdP Well-known URI</a> (<a href="#name-idp-well-known-uri">name-idp-well-known-uri</a>)</span><a href="#section-boilerplate.3-1.9.2.4.2.2.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-9.4.3">9.4.3</a>. <a href="#name-privacy-of-idp-generated-id">Privacy of IdP-generated identities and the hosting site</a><a href="#section-boilerplate.3-1.9.2.4.2.3.1">¶</a></p>	<p><a href="#section-9.4.3">9.4.3</a>. <span><a href="#name-privacy-of-idp-generated-id">Privacy of IdP-generated identities and the hosting site</a> (<a href="#name-privacy-of-idp-generated-id">name-privacy-of-idp-generated-id</a>)</span><a href="#section-boilerplate.3-1.9.2.4.2.3.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-9.4.4">9.4.4</a>. <a href="#name-security-of-third-party-idp">Security of Third-Party IdPs</a><a href="#section-boilerplate.3-1.9.2.4.2.4.1">¶</a></p>	<p><a href="#section-9.4.4">9.4.4</a>. <span><a href="#name-security-of-third-party-idp">Security of Third-Party IdPs</a> (<a href="#name-security-of-third-party-idp">name-security-of-third-party-idp</a>)</span><a href="#section-boilerplate.3-1.9.2.4.2.4.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-9.4.5">9.4.5</a>. <a href="#name-web-security-feature-intera">Web Security Feature Interactions</a><a href="#section-boilerplate.3-1.9.2.4.2.5.1">¶</a></p>	<p><a href="#section-9.4.5">9.4.5</a>. <span><a href="#name-web-security-feature-intera">Web Security Feature Interactions</a> (<a href="#name-web-security-feature-intera">name-web-security-feature-intera</a>)</span><a href="#section-boilerplate.3-1.9.2.4.2.5.1">¶</a></p>
	</li>	</li>
	</ul>	</ul>
	</li>	</li>
	</ul>	</ul>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-10">10</a>. <a href="#name-iana-considerations">IANA Considerations</a><a href="#section-boilerplate.3-1.10.1">¶</a></p>	<p><a href="#section-10">10</a>. <span><a href="#name-iana-considerations">IANA Considerations</a> (<a href="#name-iana-considerations">name-iana-considerations</a>)</span><a href="#section-boilerplate.3-1.10.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-11">11</a>. <a href="#name-references">References</a><a href="#section-boilerplate.3-1.11.1">¶</a></p>	<p><a href="#section-11">11</a>. <span><a href="#name-references">References</a> (<a href="#name-references">name-references</a>)</span><a href="#section-boilerplate.3-1.11.1">¶</a></p>
	<ul>	<ul>
	<li>	<li>

	<p><a href="#section-11.1">11.1</a>. <a href="#name-normative-references">Normative References</a><a href="#section-boilerplate.3-1.11.2.1.1">¶</a></p>	<p><a href="#section-11.1">11.1</a>. <span><a href="#name-normative-references">Normative References</a> (<a href="#name-normative-references">name-normative-references</a>)</span><a href="#section-boilerplate.3-1.11.2.1.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-11.2">11.2</a>. <a href="#name-informative-references">Informative References</a><a href="#section-boilerplate.3-1.11.2.2.1">¶</a></p>	<p><a href="#section-11.2">11.2</a>. <span><a href="#name-informative-references">Informative References</a> (<a href="#name-informative-references">name-informative-references</a>)</span><a href="#section-boilerplate.3-1.11.2.2.1">¶</a></p>
	</li>	</li>
	</ul>	</ul>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-appendix.a"></a> <a href="#name-acknowledgements">Acknowledgements</a><a href="#section-boilerplate.3-1.12.1">¶</a></p>	<p><a href="#section-appendix.a">A</a> <span><a href="#name-acknowledgements">Acknowledgements</a> (<a href="#name-acknowledgements">name-acknowledgements</a>)</span><a href="#section-boilerplate.3-1.12.1">¶</a></p>
	</li>	</li>
	<li>	<li>

	<p><a href="#section-appendix.b"></a> <a href="#name-authors-address">Author's Address</a><a href="#section-boilerplate.3-1.13.1">¶</a></p>	<p><a href="#section-appendix.b">B</a> <span><a href="#name-authors-address">Author's Address</a> (<a href="#name-authors-address">name-authors-address</a>)</span><a href="#section-boilerplate.3-1.13.1">¶</a></p>
	</li>	</li>
	</ul>	</ul>
	</nav>	</nav>
	</section>	</section>
	</div>	</div>
	<div>	<div>
	<section>	<section>
	<h2>	<h2>
	<a href="#section-1">1. </a><a href="#name-introduction">Introduction</a>	<a href="#section-1">1. </a><a href="#name-introduction">Introduction</a>
	</h2>	</h2>

End of changes. 52 change blocks.
	52 lines changed or deleted	52 lines changed or added
This html diff was produced by rfcdiff 1.45. The latest version is available fromhttp://tools.ietf.org/tools/rfcdiff/

[8]ページ先頭