<?xml version='1.0' encoding='utf-8'?>
<!DOCTYPE rfc [
  <!ENTITY nbsp    "&#160;">
  <!ENTITY zwsp   "&#8203;">
  <!ENTITY nbhy   "&#8209;">
  <!ENTITY wj     "&#8288;">
]>
<?xml-stylesheet type="text/xsl" href="rfc2629.xslt" ?>
<!-- generated by https://github.com/cabo/kramdown-rfc version 1.7.39 (Ruby 3.3.8) -->
<rfc xmlns:xi="http://www.w3.org/2001/XInclude" ipr="trust200902" docName="draft-ietf-ace-workflow-and-params-08" category="std" consensus="true" submissionType="IETF" updates="9200, 9201, 9202, 9203, 9431" tocInclude="true" sortRefs="true" symRefs="true" version="3">
  <!-- xml2rfc v2v3 conversion 3.34.0 -->
  <front>
    <title abbrev="New ACE Workflow and Parameters">Short Distribution Chain (SDC) Workflow and New OAuth Parameters for the Authentication and Authorization for Constrained Environments (ACE) Framework</title>
    <seriesInfo name="Internet-Draft" value="draft-ietf-ace-workflow-and-params-08"/>
    <author initials="M." surname="Tiloca" fullname="Marco Tiloca">
      <organization>RISE AB</organization>
      <address>
        <postal>
          <street>Isafjordsgatan 22</street>
          <city>Kista</city>
          <code>164 40</code>
          <country>Sweden</country>
        </postal>
        <email>marco.tiloca@ri.se</email>
      </address>
    </author>
    <author initials="G." surname="Selander" fullname="Göran Selander">
      <organization>Ericsson AB</organization>
      <address>
        <postal>
          <street>Torshamnsgatan 23</street>
          <city>Kista</city>
          <code>164 40</code>
          <country>Sweden</country>
        </postal>
        <email>goran.selander@ericsson.com</email>
      </address>
    </author>
    <date year="2026" month="July" day="06"/>
    <area>Security</area>
    <workgroup>ACE Working Group</workgroup>
    <keyword>Internet-Draft</keyword>
    <abstract>
      <?line 143?>

<t>This document updates the Authentication and Authorization for Constrained Environments framework (ACE, RFC 9200) as follows. (1) It defines the Short Distribution Chain (SDC) workflow that the authorization server (AS) can use for uploading an access token to a resource server on behalf of the client. (2) For the OAuth 2.0 token endpoint, it defines new parameters and encodings and it extends the semantics of the "ace_profile" parameter. (3) For the OAuth 2.0 authz-info endpoint, it defines a new parameter and its encoding. (4) It defines how the client and the AS can coordinate on the exchange of the client's and resource server's public authentication credentials, when those can be transported by value or identified by reference; this extends the semantics of the "rs_cnf" parameter for the OAuth 2.0 token endpoint, thus updating RFC 9201. (5) It extends the error handling at the AS, for which it defines a new error code. (6) It deprecates the original payload format of error responses conveying an error code, when Concise Binary Object Representation (CBOR) is used to encode message payloads. For those responses, it defines a new payload format aligned with RFC 9290, thus updating in this respect also the profiles defined in RFC 9202, RFC 9203, and RFC 9431. (7) It amends two of the requirements on profiles of the framework.</t>
    </abstract>
    <note removeInRFC="true">
      <name>About This Document</name>
      <t>
        Status information for this document may be found at <eref target="https://datatracker.ietf.org/doc/draft-ietf-ace-workflow-and-params/"/>.
      </t>
      <t>
        Discussion of this document takes place on the
        Authentication and Authorization for Constrained Environments (ace) Working Group mailing list (<eref target="mailto:ace@ietf.org"/>),
        which is archived at <eref target="https://mailarchive.ietf.org/arch/browse/ace/"/>.
        Subscribe at <eref target="https://www.ietf.org/mailman/listinfo/ace/"/>.
      </t>
      <t>Source for this draft and an issue tracker can be found at
        <eref target="https://github.com/ace-wg/ace-workflow-and-params"/>.</t>
    </note>
  </front>
  <middle>
    <?line 147?>

<section anchor="intro">
      <name>Introduction</name>
      <t>The Authentication and Authorization for Constrained Environments (ACE) framework <xref target="RFC9200"/> defines an architecture to enforce access control for constrained devices. A client (C) requests an assertion of granted permissions from an authorization server (AS) in the form of an access token, then uploads the access token to the target resource server (RS), and finally accesses protected resources at the RS according to the permissions specified in the access token.</t>
      <t>The ACE framework has as main building blocks the OAuth 2.0 framework <xref target="RFC6749"/>, the Constrained Application Protocol (CoAP) <xref target="RFC7252"/> for message transfer, Concise Binary Object Representation (CBOR) <xref target="RFC8949"/> for compact encoding, and CBOR Object Signing and Encryption (COSE) <xref target="RFC9052"/><xref target="RFC9053"/> for self-contained protection of access tokens. In addition, separate profile documents define in detail how the participants in the ACE architecture communicate, especially as to the security protocols that they use.</t>
      <t>The present document updates <xref target="RFC9200"/> as follows.</t>
      <ul spacing="normal">
        <li>
          <t>It defines the Short Distribution Chain (SDC) workflow for the ACE framework (see <xref target="sec-workflow"/> of the present document), according to which the AS uploads the access token to the RS on behalf of C and then informs C about the outcome. The SDC workflow is especially convenient in deployments where the communication leg between C and the RS is constrained, but the communication leg between the AS and the RS is not.  </t>
          <t>
The SDC workflow has no ambition to replace the original workflow defined in <xref target="RFC9200"/>. The AS can use one workflow or the other, depending, for example, on the specific RS for which an access token has been issued and the nature of the communication leg with that RS.</t>
        </li>
        <li>
          <t>It defines new parameters and encodings for the OAuth 2.0 token endpoint at the AS (see <xref target="sec-parameters"/> of the present document). These include:  </t>
          <ul spacing="normal">
            <li>
              <t>"token_upload", used by C to inform the AS that it opts in to use the SDC workflow and by the AS to inform C about the outcome of the token uploading to the RS per the SDC workflow.</t>
            </li>
            <li>
              <t>"token_hash", used by the AS to provide C with a token hash, which corresponds to an access token that the AS has issued for C and has successfully uploaded to the RS on behalf of C per the SDC workflow.</t>
            </li>
            <li>
              <t>"to_rs", used by C to provide the AS with information to relay to the RS, upon asking the AS to upload the access token to the RS per the SDC workflow. Its specific use with the OSCORE profile <xref target="RFC9203"/> is also described, as effectively enabling the use of the SDC workflow for that profile.</t>
            </li>
            <li>
              <t>"from_rs", used by the AS to provide C with information to relay from the RS, after the AS has successfully uploaded the access token to the RS per the SDC workflow. Its specific use with the OSCORE profile <xref target="RFC9203"/> is also described, as effectively enabling the use of the SDC workflow for that profile.</t>
            </li>
            <li>
              <t>"rs_cnf2", used by the AS to provide C with the public keys of the RSs in the group-audience for which the access token is issued (see <xref section="6.9" sectionFormat="of" target="RFC9200"/>).</t>
            </li>
            <li>
              <t>"audience2", used by the AS to provide C with the identifiers of the RSs in the group-audience for which the access token is issued.</t>
            </li>
            <li>
              <t>"anchor_cnf", used by the AS to provide C with the public keys of trust anchors, which C can use to validate the public key of an RS (e.g., as provided in the "rs_cnf" parameter defined in <xref target="RFC9201"/> or in the "rs_cnf2" parameter defined in the present document).</t>
            </li>
            <li>
              <t>"token_series_id", used by the AS to provide C with the binary identifier of a token series and by C to ask the AS for a new access token in the same token series that dynamically updates access rights. A corresponding access token claim, namely "token_series_id", is also defined.</t>
            </li>
            <li>
              <t>"updated_rights", used by the AS to provide the RS with an indication that an access token uploaded per the SDC workflow is not the first one of a new token series, i.e., that the AS has issued the access token for dynamically updating the access rights of C.</t>
            </li>
          </ul>
        </li>
        <li>
          <t>It extends the semantics of the "ace_profile" parameter for the OAuth 2.0 token endpoint at the authorization server defined in <xref target="RFC9200"/> (see <xref target="sec-updated-ace-profile-parameter"/> of the present document).</t>
        </li>
        <li>
          <t>It defines how C and the AS can coordinate on the exchange of the client's and resource server's public authentication credentials, when those can be transported by value or identified by reference in the access token request and response (see <xref target="sec-coord-exchanged-cred"/> of the present document).  </t>
          <t>
This extends the semantics of the "rs_cnf" parameter for the OAuth 2.0 token endpoint defined in <xref section="3.2" sectionFormat="of" target="RFC9201"/>. Therefore, it updates <xref target="RFC9201"/>.</t>
        </li>
        <li>
          <t>It extends the error handling at the AS, for which it defines a new error code that the AS can use for error responses sent to the client, after failing to verify the proof of possession of the client's private key when processing an access token request (see <xref target="sec-error-failed-pop"/> of the present document).</t>
        </li>
        <li>
          <t>It deprecates the original payload format of error responses that convey an error code, when CBOR is used to encode message payloads in the ACE framework. For such error responses, it defines a new payload format according to the problem-details format specified in <xref target="RFC9290"/> (see <xref target="sec-updated-error-responses"/> of the present document).  </t>
          <t>
In this respect, it also updates the profiles of the ACE framework defined in <xref target="RFC9202"/>, <xref target="RFC9203"/>, and <xref target="RFC9431"/>.</t>
        </li>
        <li>
          <t>It amends two of the requirements on profiles of the ACE framework originally compiled in <xref section="C" sectionFormat="of" target="RFC9200"/> (see <xref target="sec-updated-requirements"/> of the present document).</t>
        </li>
      </ul>
      <section anchor="terminology">
        <name>Terminology</name>
        <t>The key words "<bcp14>MUST</bcp14>", "<bcp14>MUST NOT</bcp14>", "<bcp14>REQUIRED</bcp14>", "<bcp14>SHALL</bcp14>", "<bcp14>SHALL
NOT</bcp14>", "<bcp14>SHOULD</bcp14>", "<bcp14>SHOULD NOT</bcp14>", "<bcp14>RECOMMENDED</bcp14>", "<bcp14>NOT RECOMMENDED</bcp14>",
"<bcp14>MAY</bcp14>", and "<bcp14>OPTIONAL</bcp14>" in this document are to be interpreted as
described in BCP 14 <xref target="RFC2119"/> <xref target="RFC8174"/> when, and only when, they
appear in all capitals, as shown here.</t>
        <?line -18?>

<t>Readers are expected to be familiar with the terms and concepts related to the ACE framework for Authentication and Authorization <xref target="RFC9200"/><xref target="RFC9201"/>, as well as with terms and concepts related to CBOR Web Tokens (CWTs) <xref target="RFC8392"/> and CWT Confirmation Methods <xref target="RFC8747"/>.</t>
        <t>The terminology for entities in the considered architecture is defined in OAuth 2.0 <xref target="RFC6749"/>. In particular, this includes client (C), resource server (RS), and authorization server (AS).</t>
        <t>Readers are also expected to be familiar with the terms and concepts related to CoAP <xref target="RFC7252"/>, Concise Data Definition Language (CDDL) <xref target="RFC8610"/>, CBOR <xref target="RFC8949"/>, JavaScript Object Notation (JSON) <xref target="RFC8259"/>, and COSE <xref target="RFC9052"/><xref target="RFC9053"/>.</t>
        <t>Note that the term "endpoint" is used here following its OAuth definition <xref target="RFC6749"/>, aimed at denoting resources such as /token and /introspect at the AS, and /authz-info at the RS. The CoAP definition, which is "[a]n entity participating in the CoAP protocol" <xref target="RFC7252"/>, is not used in this document.</t>
        <t>Furthermore, this document uses the following terms.</t>
        <ul spacing="normal">
          <li>
            <t>Token series: a set of access tokens, all of which are bound to the same proof-of-possession (PoP) key and are sequentially issued by the same AS for the same pair (client, audience) per the same profile of ACE. A token series ends when the latest access token of that token series becomes invalid (e.g., when it expires or gets revoked).  </t>
            <t>
Profiles of ACE can provide their extended and specialized definition, e.g., by further taking into account the public authentication credentials of C and the RS.</t>
          </li>
          <li>
            <t>Token hash: identifier of an access token, in binary format encoding. The token hash has no relation with other access token identifiers possibly used, such as the 'cti' (CWT ID) claim of CWTs <xref target="RFC8392"/>.</t>
          </li>
        </ul>
      </section>
      <section anchor="notations">
        <name>Notations</name>
        <t>CBOR <xref target="RFC8949"/> and CDDL <xref target="RFC8610"/> are used in this document.</t>
        <t>Examples throughout this document are expressed in CBOR diagnostic notation as defined in <xref section="8" sectionFormat="of" target="RFC8949"/> and <xref section="G" sectionFormat="of" target="RFC8610"/>. Diagnostic notation comments are often used to provide a textual representation of the parameters' keys and values.</t>
        <t>In the CBOR diagnostic notation used in this document, constructs of the form e'SOME_NAME' are replaced by the value assigned to SOME_NAME in the CDDL model shown in <xref target="fig-cddl-model"/> of <xref target="sec-cddl-model"/>. For example, {e'audience2' : ["rs1", "rs2"]} stands for {54 : ["rs1", "rs2"]}.</t>
        <t>Note to RFC Editor: Please delete the paragraph immediately preceding this note. Also, in the CBOR diagnostic notation used in this document, please replace the constructs of the form e'SOME_NAME' with the value assigned to SOME_NAME in the CDDL model shown in <xref target="fig-cddl-model"/> of <xref target="sec-cddl-model"/>. Finally, please delete this note.</t>
      </section>
    </section>
    <section anchor="sec-workflow">
      <name>The Short Distribution Chain (SDC) Workflow</name>
      <t>As defined in <xref section="4" sectionFormat="of" target="RFC9200"/>, the ACE framework relies on its basic protocol workflow shown in <xref target="fig-old-workflow"/>.</t>
      <t>That is, the client first sends an access token request to the token endpoint at the AS (Step A), specifying permissions that it seeks to obtain for accessing protected resources at the RS, possibly together with information on its own public authentication credential.</t>
      <t>Then, if the request is successfully verified, authenticated, and authorized, the AS replies to the client with an access token response (Step B), providing an access token and possibly additional parameters as access information including the actually granted permissions.</t>
      <t>Finally, the client uploads the access token to the RS and, consistently with the permissions granted according to the access token, accesses a resource at the RS (Step C), which replies with the result of the resource access (Step F). Details about what protocol the client and the RS use to establish a secure association, mutually authenticate, and secure their communications are defined in the specific profile of ACE used, such as <xref target="RFC9202"/>, <xref target="RFC9203"/>, <xref target="RFC9431"/>, <xref target="I-D.ietf-ace-edhoc-oscore-profile"/>, or <xref target="I-D.ietf-ace-group-oscore-profile"/>.</t>
      <t>Further interactions are possible between the AS and the RS, i.e., the exchange of an introspection request and response where the AS validates a previously issued access token for the RS (Steps D and E).</t>
      <figure anchor="fig-old-workflow">
        <name>ACE Basic Protocol Workflow.</name>
        <artwork><![CDATA[
+--------+                               +---------------+
|        |---(A)-- Token Request ------->|               |
|        |                               | Authorization |
|        |<--(B)-- Access Token ---------|    Server     |
|        |    + Access Information       |               |
|        |    + Refresh Token (optional) +---------------+
|        |                                      ^ |
|        |            Introspection Request  (D)| |
| Client |                         Response     | |(E)
|        |            (optional exchange)       | |
|        |                                      | v
|        |                               +--------------+
|        |---(C)-- Token + Request ----->|              |
|        |                               |   Resource   |
|        |<--(F)-- Protected Resource ---|    Server    |
|        |                               |              |
+--------+                               +--------------+
]]></artwork>
      </figure>
      <t>This section defines the alternative Short Distribution Chain (SDC) workflow shown in <xref target="fig-new-workflow"/>, which <bcp14>MAY</bcp14> be supported by the AS. Unlike in the original workflow defined in <xref target="RFC9200"/>, the AS uploads the access token to the RS on behalf of the client and then informs the client about the outcome.</t>
      <t>If the token uploading has been successfully completed, the client typically does not need to obtain the access token from the AS altogether. That is, the client simply establishes a secure association with the RS (if that has not happened already) and then accesses protected resources at the RS, according to the permissions granted per the access token and specified by the AS as access information.</t>
      <figure anchor="fig-new-workflow">
        <name>ACE Short Distribution Chain (SDC) Workflow.</name>
        <artwork><![CDATA[
+--------+                               +----------------------------+
|        |---(A)-- Token Request ------->|                            |
|        |                               |       Authorization        |
|        |<--(B)-- Token Response -------|           Server           |
|        |    + Access Information       |                            |
|        |    + Access Token (optional)  +----------------------------+
|        |    + Refresh Token (optional)   ^ |         | ^
|        |                                 | |         | | Token-Upload
|        |        Introspection Request (D)| |     (A1)| |      Request
| Client |                     Response    | |(E)      | |(A2) Response
|        |        (optional exchange)      | |         | |
|        |                                 | v         v |
|        |                               +----------------------------+
|        |---(C1)-- Token (Optional) --->|                            |
|        |                               |                            |
|        |---(C2)-- Protected Request -->|          Resource          |
|        |                               |           Server           |
|        |<--(F)--- Protected Resource --|                            |
|        |                               |                            |
+--------+                               +----------------------------+
]]></artwork>
      </figure>
      <t>More specifically, the SDC workflow consists of the following steps.</t>
      <ul spacing="normal">
        <li>
          <t>Step A - Like in the original workflow, the client sends an access token request to the token endpoint at the AS, with the additional indication that it opts in to use the SDC workflow.  </t>
          <t>
As defined in <xref target="sec-token_upload-req"/>, this indication is provided to the AS by means of the "token_upload" parameter included in the access token request. The parameter also specifies what the AS has to return in the access token response at Step B, following a successful uploading of the access token from the AS to the RS.</t>
        </li>
        <li>
          <t>Step A1 - This new step consists of the AS uploading the access token to the RS, typically at the authz-info endpoint, just like the client does in the original workflow.</t>
        </li>
        <li>
          <t>Step A2 - This new step consists of the RS replying to the AS, following the uploading of the access token at Step A1.</t>
        </li>
        <li>
          <t>Step B - In the access token response, the AS informs the client that it has attempted to upload the access token to the RS, specifying the outcome of the token uploading based on the reply received from the RS at Step A2.  </t>
          <t>
As defined in <xref target="sec-token_upload-resp"/>, this information is provided to the client by means of the "token_upload" parameter included in the access token response. If the token uploading has failed, the access token response also includes the access token. Otherwise, the access token response includes information consistent with what was specified by the "token_upload" parameter of the access token request at Step A.</t>
        </li>
        <li>
          <t>Step C1 - This step occurs only if the token uploading from the AS has failed, and the AS has provided the client with the access token at Step B. In such a case, the client uploads the access token to the RS just like at Step C of the original workflow.</t>
        </li>
        <li>
          <t>Step C2 - The client attempts to access a protected resource at the RS, according to the permissions granted per the access token and specified by the AS as access information at Step B.</t>
        </li>
        <li>
          <t>Steps D, E, and F are like in the original workflow.</t>
        </li>
      </ul>
      <t>The SDC workflow has no ambition to replace the original workflow defined in <xref target="RFC9200"/>. The AS can use one workflow or the other, depending, for example, on the specific RS for which the access token has been issued and the nature of the communication leg with that RS.</t>
      <t>When using the SDC workflow, all the communications between the AS and the RS <bcp14>MUST</bcp14> be protected, consistent with Sections <xref target="RFC9200" section="5.8.4.3" sectionFormat="bare"/> and <xref target="RFC9200" section="6.5" sectionFormat="bare"/> of <xref target="RFC9200"/>. Unlike in the original workflow, this results in protecting also the uploading of the first access token in a token series, i.e., in addition to the uploading of the following access tokens in the token series for dynamically updating the access rights of the client.</t>
      <t>The SDC workflow is also suitable for deployments where clients are not aware of details such as the need for access tokens to be issued by the AS and uploaded at the RS. Consistent with the intended access policies, the AS can be configured to automatically issue access tokens for such clients and upload those access tokens to the RS. This means that such clients do not have to request for an access token to be issued in the first place. That is, they can immediately send requests to the RS for accessing its protected resources, in accordance with the access tokens already issued and uploaded by the AS.</t>
      <section anchor="sec-as-token-upload">
        <name>Token Upload</name>
        <t>When using the original workflow defined in <xref target="RFC9200"/>, there are two typical cases concerning the upload of the access token to the RS from C.</t>
        <ul spacing="normal">
          <li>
            <t>The first case consists in the upload of the first access token in a token series. While details depend on the specific profile of ACE used, such an access token is typically uploaded through an unprotected POST request to the authz-info endpoint.</t>
          </li>
          <li>
            <t>The second case consists in the upload of an access token that is not the first of its token series, i.e., the AS has issued the access token for dynamically updating the access rights of C.  </t>
            <t>
The intent is also for C and the RS to preserve the same secure communication association that they currently share and that is associated with the token series in question.  </t>
            <t>
Such an access token is uploaded through a POST request to the authz-info endpoint, which is protected by means of the secure communication association that is shared between C and the RS. If the new access token is accepted by the RS, the new access token supersedes the one currently stored for the token series in question, and it becomes associated with the corresponding secure communication association that is shared between C and the RS.</t>
          </li>
        </ul>
        <t>However, if the AS uploads the access token to the RS on behalf of C as per the SDC workflow, the upload of the access token always rely on a protected POST request from the AS to the authz-info endpoint. In particular, the request is protected with the secure communication association shared between the AS and the RS.</t>
        <t>When receiving a POST request to the authz-info endpoint that is specifically protected through the secure communication association shared with the AS, the RS proceeds as follows. In particular, the RS leverages the explicit indication provided by the AS through the "updated_rights" parameter defined in <xref target="sec-updated_rights"/>, which is included in the request in the case of dynamic update of access rights.</t>
        <ul spacing="normal">
          <li>
            <t>If the POST request does not include the "updated_rights" parameter, the access token in question is the first one in a token series. Consequently, the RS processes the request and the access token therein like it would when receiving the request from C and according to the specific profile of ACE used.</t>
          </li>
          <li>
            <t>If the POST request includes the "updated_rights" parameter encoding a specific value, the access token in question is not the first one in a token series, i.e., it is meant to dynamically update the access rights of C, while preserving the same secure communication association that is shared between C and the RS. The POST request and its processing at the RS in this case are defined in <xref target="sec-updated_rights"/>.</t>
          </li>
        </ul>
      </section>
    </section>
    <section anchor="sec-parameters">
      <name>New Parameters</name>
      <t>The rest of this section defines a number of additional parameters and encodings for the OAuth 2.0 token endpoint at the AS (see <xref section="5.8" sectionFormat="of" target="RFC9200"/>) and for the OAuth 2.0 authz-info endpoint at the RS (see <xref section="5.10.1" sectionFormat="of" target="RFC9200"/>).</t>
      <section anchor="sec-token_upload">
        <name>token_upload</name>
        <t>This section defines the additional "token_upload" parameter. The parameter can be used in an access token request sent by C to the token endpoint at the AS (see <xref section="5.8.1" sectionFormat="of" target="RFC9200"/>), as well as in the access token response sent as a reply by the AS (see <xref section="5.8.2" sectionFormat="of" target="RFC9200"/>).</t>
        <section anchor="sec-token_upload-req">
          <name>In the Access Token Request</name>
          <t>The "token_upload" parameter is <bcp14>OPTIONAL</bcp14> to include in an access token request. The presence of this parameter indicates that C opts in to use the SDC workflow defined in <xref target="sec-workflow"/>, whose actual use for uploading the issued access token to the RS is an exclusive prerogative of the AS.</t>
          <t>This parameter can take one of the following integer values. When the access token request is encoded in CBOR, those values are encoded as CBOR unsigned integers. The value of the parameter determines whether the follow-up access token response will have to include certain information, in the case that the AS has successfully uploaded the issued access token to the RS.</t>
          <ul spacing="normal">
            <li>
              <t>0: The access token response will have to include neither the access token nor its corresponding token hash.  </t>
              <t>
Note that is not useful to specify the value 0 if C wishes to use the method defined in <xref target="RFC9770"/> for receiving notifications about revoked access tokens from the AS. In such case, C needs to specify one of the two alternative values 1 or 2 defined below.</t>
            </li>
            <li>
              <t>1: The access token response will have to include the token hash corresponding to the access token, but not the access token.</t>
            </li>
            <li>
              <t>2: The access token response will have to include the access token, but not the corresponding token hash.</t>
            </li>
          </ul>
          <t>If the AS supports the SDC workflow and the access token request includes the "token_upload" parameter with value 0, 1, or 2, then the AS <bcp14>MAY</bcp14> use the SDC workflow to upload the access token to the RS on behalf of C. Otherwise, following that access token request, the AS <bcp14>MUST NOT</bcp14> use the SDC workflow.</t>
        </section>
        <section anchor="sec-token_upload-resp">
          <name>In the Access Token Response</name>
          <t>The "token_upload" parameter <bcp14>MUST</bcp14> be included in an access token response, if both the following conditions apply. Otherwise, the "token_upload" parameter <bcp14>MUST NOT</bcp14> be included.</t>
          <ul spacing="normal">
            <li>
              <t>The corresponding access token request from C included the "token_upload" parameter, with value 0, 1, or 2.</t>
            </li>
            <li>
              <t>The AS has attempted to upload an access token to the RS as per the SDC workflow, irrespective of the result of the token upload.</t>
            </li>
          </ul>
          <t>The following considers three possible cases, with reference to the issued access token pertaining to the access token response:</t>
          <ul spacing="normal">
            <li>
              <t>CASE_1 - The issued access token is the first one of a new token series, aligned with the access token request that asked to issue the first access token of a new token series.</t>
            </li>
            <li>
              <t>CASE_2 - The issued access token is not the first one in a token series, aligned with the access token request that asked to dynamically update the access rights of C, i.e., to issue a new access token of an existing token series. <xref target="sec-updated_rights"/> further describes this case.</t>
            </li>
            <li>
              <t>CASE_3 - The issued access token is the first one of a new token series, although the access token request asked to dynamically update the access rights of C, i.e., to issue a new access token of an existing token series.  </t>
              <t>
The new token series to which the issued access token belongs is created by the AS "on the fly", when receiving a specific error code from the RS after uploading an access token intended for updating the access rights of C, as indicated in the access token request.  </t>
              <t>
In this case, the AS does not upload the issued access token at the RS, and it provides the access token to C in the access token response. <xref target="sec-new-series-on-the-fly"/> further describes this case.</t>
            </li>
          </ul>
          <t>When the "token_upload" parameter is included in the access token response, it can take one of the following integer values. When the access token response is encoded in CBOR, those values are encoded as CBOR unsigned integers.</t>
          <ul spacing="normal">
            <li>
              <t>If CASE_1 or CASE_2 applies and the token upload at the RS was successful, then the "token_upload" parameter <bcp14>MUST</bcp14> encode the value 0.</t>
            </li>
            <li>
              <t>If CASE_1 or CASE_2 applies and the token upload at the RS was not successful, then the "token_upload" parameter <bcp14>MUST</bcp14> encode the value 1.</t>
            </li>
            <li>
              <t>If CASE_3 applies, then the "token_upload" parameter <bcp14>MUST</bcp14> encode the value 2.</t>
            </li>
          </ul>
          <t>When the access token targets a group-audience (see <xref section="6.9" sectionFormat="of" target="RFC9200"/>), the same as above holds, with the following differences:</t>
          <ul spacing="normal">
            <li>
              <t>The AS stops uploading an access token to any remaining RS in the group-audience, as soon as the token upload fails at one of those RSs. Consequently,</t>
            </li>
            <li>
              <t>The access token response indicates that the upload of an access token was successful if and only if the token upload was successful at each RS in the group-audience.</t>
            </li>
          </ul>
          <t>In the case that the "token_upload" parameter encodes the value 1 or 2, the access token response <bcp14>MUST</bcp14> include the "access_token" parameter specifying the issued access token.</t>
          <t>Instead, in the case that the "token_upload" parameter encodes the value 0, the access token response can include additional parameters as defined below, depending on the value of the "token_upload" parameter in the corresponding access token request:</t>
          <ul spacing="normal">
            <li>
              <t>If the "token_upload" parameter in the access token request specified the value 0, then the access token response <bcp14>MUST NOT</bcp14> include the "access_token" parameter and <bcp14>MUST NOT</bcp14> include the "token_hash" parameter defined in <xref target="sec-token_hash"/>.</t>
            </li>
            <li>
              <t>If the "token_upload" parameter in the access token request specified the value 1, then the access token response <bcp14>MUST NOT</bcp14> include the "access_token" parameter and <bcp14>MUST</bcp14> include the "token_hash" parameter defined in <xref target="sec-token_hash"/>, specifying the hash corresponding to the issued access token and computed as defined in <xref target="sec-token_hash"/>.</t>
            </li>
            <li>
              <t>If the "token_upload" parameter in the access token request specified the value 2, then the access token response <bcp14>MUST</bcp14> include the "access_token" parameter specifying the issued access token and <bcp14>MUST NOT</bcp14> include the "token_hash" parameter defined in <xref target="sec-token_hash"/>.</t>
            </li>
          </ul>
          <t>When C receives an access token response that includes the "token_upload" parameter encoding the value 2 (see <xref target="sec-new-series-on-the-fly"/>), the AS is explicitly telling C that:</t>
          <ul spacing="normal">
            <li>
              <t>The dynamic update of access rights that was asked through the access token request did not succeed.</t>
            </li>
            <li>
              <t>The RS does not store an old access token belonging to the token series that C asked to extend.  </t>
              <t>
Profiles of ACE typically prescribe that, in such case, the RS does not have anymore the secure communication association that was previously shared with C and bound to such old access token.</t>
            </li>
            <li>
              <t>The issued access token is the first one of a new token series.</t>
            </li>
          </ul>
          <t>Consequently, C takes the next steps with the RS according to the profile of ACE used, e.g., C establishes a secure communication association with the RS and bound to the issued access token of the new token series.</t>
        </section>
        <section anchor="examples">
          <name>Examples</name>
          <t><xref target="fig-example-AS-to-C-token-upload"/> shows an example, with first an access token request from C to the AS and then an access token response from the AS to C, following the issue of an access token bound to a symmetric PoP key.</t>
          <t>The access token request specifies the "token_upload" parameter with value 0. That is, C indicates that it requires neither the access token nor the corresponding token hash from the AS, in the case that the AS successfully uploads the access token to the RS.</t>
          <t>The access token response specifies the "token_upload" parameter with value 0, which indicates that the AS has successfully uploaded the access token to the RS on behalf of C.</t>
          <t>Consistent with the value of the "token_upload" parameter in the access token request, the access token response includes neither the access token nor its corresponding token hash. The access token response also includes the "cnf" parameter specifying the symmetric PoP key bound to the access token.</t>
          <figure anchor="fig-example-AS-to-C-token-upload">
            <name>Example of Access Token Request-Response Exchange. Following a successful uploading of the access token from the AS to the RS, the access token response includes the "token_upload" parameter but not the access token, which is bound to a symmetric key and was uploaded to the RS by the AS.</name>
            <artwork><![CDATA[
   Access token request

   Header: POST (Code=0.02)
   Uri-Host: "as.example.com"
   Uri-Path: "token"
   Content-Format: 19 (application/ace+cbor)
   Payload:
   {
     / audience /  5 : "tempSensor4711",
     / scope /     9 : "read",
     e'token_upload' : 0
   }


   Access token response

   Header: Created (Code=2.01)
   Content-Format: 19 (application/ace+cbor)
   Max-Age: 3560
   Payload:
   {
      e'token_upload' : 0,
     / expires_in / 2 : 3600,
     / cnf /        8 : {
       / COSE_Key / 1 : {
         / kty / 1 : 4 / Symmetric /,
         / kid / 2 : h'3d027833fc6267ce',
         / k /  -1 : h'73657373696f6e6b6579'
       }
     }
   }
]]></artwork>
          </figure>
          <t><xref target="fig-example-AS-to-C-token-upload-success-ret-token"/> shows another example, with first an access token request from C to the AS and then an access token response from the AS to C, also following the issue of an access token bound to a symmetric PoP key.</t>
          <t>The access token request specifies the "token_upload" parameter with value 2. That is, C indicates that it requires the access token from the AS, even in the case that the AS successfully uploads the access token to the RS.</t>
          <t>The access token response specifies the "token_upload" parameter with value 0, which indicates that the AS has successfully uploaded the access token to the RS on behalf of C.</t>
          <t>Consistent with the value of the "token_upload" parameter in the access token request, the access token response includes the "access_token" parameter specifying the issued access token. The access token response also includes the "cnf" parameter specifying the symmetric PoP key bound to the access token.</t>
          <figure anchor="fig-example-AS-to-C-token-upload-success-ret-token">
            <name>Example of Access Token Request-Response Exchange. Following a successful uploading of the access token from the AS to the RS, the access token response includes the "token_upload" parameter as well as the "access_token" parameter conveying the access token, which is bound to a symmetric key and was uploaded to the RS by the AS.</name>
            <artwork><![CDATA[
   Access token request

   Header: POST (Code=0.02)
   Uri-Host: "as.example.com"
   Uri-Path: "token"
   Content-Format: 19 (application/ace+cbor)
   Payload:
   {
     / audience /  5 : "tempSensor4711",
     / scope /     9 : "read",
     e'token_upload' : 2
   }


   Access token response

   Header: Created (Code=2.01)
   Content-Format: 19 (application/ace+cbor)
   Max-Age: 3560
   Payload:
   {
        e'token_upload' : 0,
     / access_token / 1 : h'd08343a1...4819',
       / (full CWT elided for brevity;
          CWT contains the symmetric PoP key in the "cnf" claim) /
     / expires_in /   2 : 3600,
     / cnf /          8 : {
       / COSE_Key / 1 : {
         / kty / 1 : 4 / Symmetric /,
         / kid / 2 : h'3d027833fc6267ce',
         / k /  -1 : h'73657373696f6e6b6579'
       }
     }
   }
]]></artwork>
          </figure>
          <t><xref target="fig-example-AS-to-C-token-upload-failed"/> shows another example, with first an access token request from C to the AS and then an access token response from the AS to C, also following the issue of an access token bound to a symmetric PoP key.</t>
          <t>The access token request specifies the "token_upload" parameter with value 0. That is, C indicates that it requires neither the access token nor the corresponding token hash from the AS, in the case that the AS successfully uploads the access token to the RS.</t>
          <t>In this example, the access token response includes the "token_upload" parameter with value 1, which indicates that the AS has attempted and failed to upload the access token to the RS on behalf of C. The access token response also includes the "access_token" parameter specifying the issued access token, together with the "cnf" parameter specifying the symmetric PoP key bound to the access token.</t>
          <t>Note that, even though the AS has failed to upload the access token to the RS, the response code 2.01 (Created) is used when replying to C, since the access token request as such has been successfully processed at the AS, with the following issue of the access token.</t>
          <figure anchor="fig-example-AS-to-C-token-upload-failed">
            <name>Example of Access Token Request-Response Exchange. Following a failed uploading of the access token from the AS to the RS, the access token response includes the "token_upload" parameter with value 1 as well the "access_token" parameter conveying the access token bound to a symmetric key.</name>
            <artwork><![CDATA[
   Access token request

   Header: POST (Code=0.02)
   Uri-Host: "as.example.com"
   Uri-Path: "token"
   Content-Format: 19 (application/ace+cbor)
   Payload:
   {
     / audience /  5 : "tempSensor4711",
     / scope /     9 : "read",
     e'token_upload' : 0
   }


   Access token response

   Header: Created (Code=2.01)
   Content-Format: 19 (application/ace+cbor)
   Max-Age: 3560
   Payload:
   {
        e'token_upload' : 1,
     / access_token / 1 : h'd08343a1...4819',
       / (full CWT elided for brevity;
          CWT contains the symmetric PoP key in the "cnf" claim) /
     / expires_in /   2 : 3600,
     / cnf /          8 : {
       / COSE_Key / 1 : {
         / kty / 1 : 4 / Symmetric /,
         / kid / 2 : h'3d027833fc6267ce',
         / k /  -1 : h'73657373696f6e6b6579'
       }
     }
   }
]]></artwork>
          </figure>
        </section>
      </section>
      <section anchor="sec-token_hash">
        <name>token_hash</name>
        <t>This section defines the additional "token_hash" parameter. The parameter can be used in an access token response sent by the AS (see <xref section="5.8.2" sectionFormat="of" target="RFC9200"/>), in reply to an access token request sent to the token endpoint by C.</t>
        <t>The following refers to the base64url encoding without padding (see <xref section="5" sectionFormat="of" target="RFC4648"/>) and denotes as "binary representation" of a text string the corresponding UTF-8 encoding <xref target="RFC3629"/>, which is the implied charset used in JSON (see <xref section="8.1" sectionFormat="of" target="RFC8259"/>).</t>
        <t>The "token_hash" parameter <bcp14>MUST</bcp14> be included in an access token response, if both the following conditions apply. Otherwise, it <bcp14>MUST NOT</bcp14> be included.</t>
        <ul spacing="normal">
          <li>
            <t>The corresponding access token request included the "token_upload" parameter with value 1 (see <xref target="sec-token_upload-req"/>).</t>
          </li>
          <li>
            <t>The access token response includes the "token_upload" parameter with value 0 or 2 (see <xref target="sec-token_upload-resp"/>). That is, the AS has successfully uploaded the issued access token to the RS, as per the SDC workflow.</t>
          </li>
        </ul>
        <t>This parameter specifies the token hash corresponding to the access token issued by the AS and successfully uploaded to the RS on behalf of C. In particular:</t>
        <ul spacing="normal">
          <li>
            <t>If the access token response is encoded in CBOR, then the "token_hash" parameter is a CBOR byte string, with value the token hash.</t>
          </li>
          <li>
            <t>If the access token response is encoded in JSON, then the "token_hash" parameter has as value the base64url-encoded text string that encodes the token hash.</t>
          </li>
        </ul>
        <t>The AS computes the token hash as defined in <xref target="sec-token-hash-output"/>.</t>
        <section anchor="sec-token-hash-output">
          <name>Computing the Token Hash</name>
          <t>The AS computes the token hash over the value that the "access_token" parameter would have had in the same access token response, if it was included therein and specifying the access token.</t>
          <t>In particular, the input HASH_INPUT over which the token hash is computed is determined as follows.</t>
          <ul spacing="normal">
            <li>
              <t>If the access token response is encoded in CBOR, then:  </t>
              <ul spacing="normal">
                <li>
                  <t>BYTES denotes the value of the CBOR byte string that would be conveyed by the "access_token" parameter, if this was included in the access token response.</t>
                </li>
                <li>
                  <t>HASH_INPUT_TEXT is the base64url-encoded text string that encodes BYTES.</t>
                </li>
                <li>
                  <t>HASH_INPUT is the binary representation of HASH_INPUT_TEXT.</t>
                </li>
              </ul>
            </li>
            <li>
              <t>If the access token response is encoded in JSON, then HASH_INPUT is the binary representation of the text string that would be conveyed by the "access_token" parameter, if this was included in the access token response.</t>
            </li>
          </ul>
          <t>Once determined HASH_INPUT as defined above, a hash value of HASH_INPUT is generated as per <xref section="6" sectionFormat="of" target="RFC6920"/>. The resulting output in binary format is used as the token hash. Note that the used binary format embeds the identifier of the used hash function in the first byte of the computed token hash.</t>
          <t>The specific hash function used <bcp14>MUST</bcp14> be collision resistant on byte strings and <bcp14>MUST</bcp14> be selected from the "Named Information Hash Algorithm Registry" <xref target="IANA.Hash.Algorithms"/>. Consistent with the compliance requirements in <xref section="2" sectionFormat="of" target="RFC6920"/>, the hash function sha-256 as specified in <xref target="SHA-256"/> is mandatory to implement.</t>
          <t>The computation of token hashes defined above is aligned with that specified for the computation of token hashes in <xref section="4" sectionFormat="of" target="RFC9770"/>, where they are used as identifiers of revoked access tokens. Therefore, given a hash algorithm and an access token, the AS computes the same corresponding token hash in either case.</t>
          <t>If the AS supports the method specified in <xref target="RFC9770"/>, then the AS <bcp14>MUST</bcp14> use the same hash algorithm for computing both the token hashes to include in the "token_hash" parameter and the token hashes computed per that method to identify revoked access tokens.</t>
        </section>
        <section anchor="example">
          <name>Example</name>
          <t><xref target="fig-example-AS-to-C-token-hash"/> shows an example, with first an access token request from C to the AS and then an access token response from the AS to C, following the issue of an access token bound to a symmetric PoP key.</t>
          <t>The access token request specifies the "token_upload" parameter with value 1. That is, C indicates that it requires the token hash corresponding to the access token from the AS, in the case that the AS successfully uploads the access token to the RS.</t>
          <t>The access token response specifies the "token_upload" parameter with value 0, which indicates that the AS has successfully uploaded the access token to the RS on behalf of C.</t>
          <t>Consistent with the value of the "token_upload" parameter in the access token request, the access token response includes the "token_hash" parameter, which specifies the token hash corresponding to the issued access token. The access token response also includes the "cnf" parameter specifying the symmetric PoP key bound to the access token.</t>
          <figure anchor="fig-example-AS-to-C-token-hash">
            <name>Example of Access Token Request-Response Exchange. Following a successful uploading of the access token from the AS to the RS, the access token response includes the "token_upload" parameter as well as the "token_hash" parameter. The "token_hash" parameter conveys the token hash corresponding to the issued access token, which is bound to a symmetric key and was uploaded to the RS by the AS.</name>
            <artwork><![CDATA[
   Access token request

   Header: POST (Code=0.02)
   Uri-Host: "as.example.com"
   Uri-Path: "token"
   Content-Format: 19 (application/ace+cbor)
   Payload:
   {
     / audience /  5 : "tempSensor4711",
     / scope /     9 : "read",
     e'token_upload' : 1
   }


   Access token response

   Header: Created (Code=2.01)
   Content-Format: 19 (application/ace+cbor)
   Max-Age: 3560
   Payload:
   {
      e'token_upload' : 0,
        e'token_hash' : h'0153269057e12fe2b74ba07c892560a2d7
                          53877eb62ff44d5a19002530ed97ffe4',
     / expires_in / 2 : 3600,
     / cnf /        8 : {
       / COSE_Key / 1 : {
         / kty / 1 : 4 / Symmetric /,
         / kid / 2 : h'3d027833fc6267ce',
         / k /  -1 : h'73657373696f6e6b6579'
       }
     }
   }
]]></artwork>
          </figure>
        </section>
      </section>
      <section anchor="sec-to_rs-from_rs">
        <name>to_rs and from_rs</name>
        <t>The rest of this section defines the additional parameters "to_rs" (see <xref target="sec-to_rs"/>) and "from_rs" (see <xref target="sec-from_rs"/>).</t>
        <t>The "to_rs" parameter can be used in an access token request sent by C to the token endpoint at the AS (see <xref section="5.8.1" sectionFormat="of" target="RFC9200"/>). The "from_rs" parameter can be used in an access token response sent by the AS (see <xref section="5.8.2" sectionFormat="of" target="RFC9200"/>), in reply to an access token request sent to the token endpoint by C.</t>
        <t>The semantics and encoding of the information specified in the two parameters depend on the specific profile of ACE and application used.</t>
        <t>For instance, when using the OSCORE profile <xref target="RFC9203"/>, C and RS can use the two parameters to exchange the expected nonces and identifiers via the AS. <xref target="sec-to_rs-from_rs-oscore-profile"/> describes how the two parameters are used when the OSCORE profile is used, thereby effectively enabling the use of the SDC workflow for that profile.</t>
        <section anchor="sec-to_rs">
          <name>to_rs</name>
          <t>The "to_rs" parameter is <bcp14>OPTIONAL</bcp14> to include in an access token request. The presence of this parameter indicates that C wishes the AS to relay the information specified therein to the RS, when the AS uploads the issued access token to the RS per the SDC workflow defined in <xref target="sec-workflow"/>.</t>
          <t>The "to_rs" parameter <bcp14>MUST NOT</bcp14> be included if the "token_upload" parameter defined in <xref target="sec-token_upload"/> is not included in the access token request. Also, this parameter <bcp14>MUST NOT</bcp14> be included if the requested access token is not the first one of a new token series, i.e., if C is asking the AS for a new access token in the same token series that dynamically updates access rights.</t>
          <t>The information specified in the "to_rs" parameter consists in what C would provide to the RS in addition to the access token, if the original workflow was used and a POST request encoded in CBOR was sent to the authz-info endpoint at the RS.</t>
          <t>When composing the parameter "to_rs", C considers the same information and <bcp14>MUST</bcp14> wrap it in a data structure STRUCT, by using the same method that it employs when using the original workflow. For example, with reference to the OSCORE profile of ACE <xref target="RFC9203"/>, such a method composes STRUCT as a CBOR map, which has to be sent as payload of a request with Content-Format "application/ace+cbor".</t>
          <t>After that, C builds a CBOR byte string STR, whose value is the binary representation of STRUCT.</t>
          <t>If and only if the request to the authz-info endpoint has to be sent with a Content-Format ct different from the one employed in the profile of ACE used, then C <bcp14>MUST</bcp14> tag the CBOR byte string STR (see <xref section="3.4" sectionFormat="of" target="RFC8949"/>). The tag number TN <bcp14>MUST</bcp14> be the one associated with the Content-Format ct and is determined according to the technique described in <xref section="B" sectionFormat="of" target="RFC9277"/>. For example, the Content-Format "application/ace+cbor" has Content-Format ID 19 and therefore has 1668546836 as its associated tag number.</t>
          <t>When the access token request is encoded in CBOR, the value of the "to_rs" parameter is the (tagged) CBOR byte string STR.</t>
          <t>When the access token request is encoded in JSON, the value of the "to_rs" parameter is a text string, which encodes the binary representation of the (tagged) CBOR byte string STR in base64url without padding (see <xref section="5" sectionFormat="of" target="RFC4648"/>).</t>
          <t>If the "to_rs" parameter is included, the AS proceeds as follows when composing the POST request to send to the authz-info endpoint on behalf of C:</t>
          <ol spacing="normal" type="1"><li>
              <t>The AS sets the Content-Format of the request to be either:  </t>
              <ul spacing="normal">
                <li>
                  <t>the one employed in the profile of ACE used, if the CBOR byte string STR conveyed by the "to_rs" parameter is not tagged; or, otherwise,</t>
                </li>
                <li>
                  <t>the one associated with the tag number TN of the tagged CBOR byte string STR conveyed by the "to_rs" parameter.</t>
                </li>
              </ul>
            </li>
            <li>
              <t>The AS retrieves the structure STRUCT from STR and extends STRUCT by adding the issued access token, consistent with the profile of ACE used and the Content-Format determined at the previous step.  </t>
              <t>
For example, when using the OSCORE profile of ACE <xref target="RFC9203"/> and thus the Content-Format to use is "application/ace+cbor", STRUCT is a CBOR map and the access token is included therein as an entry that has: as map key, 1 encoded as a CBOR integer; as map value, a CBOR byte string whose value is the binary representation of the access token.</t>
            </li>
          </ol>
          <t>Clearly, performing the two steps above requires the AS to understand the structure STRUCT and its semantics. In turn, such an understanding builds on the AS supporting the profile of ACE used and the Content-Format to use as determined at Step 1. In the expected cases, the AS is realistically able to perform the two steps. If the AS finds itself unable to perform the two steps, then the AS would simply not upload the access token to the RS on behalf of C. In such a case, the AS replies to C with an access token response, which includes the "access_token" parameter specifying the issued access token and does not include the "token_upload" parameter (see <xref target="sec-token_upload"/>).</t>
          <t>Tagging the CBOR byte string as defined above ensures that the AS can relay the information specified in the "to_rs" parameter as intended by C, i.e., by sending to the authz-info endpoint a POST request that has the correct Content-Format and conveys the correct payload.</t>
          <t>As a case in point, using the DTLS profile of ACE <xref target="RFC9202"/> typically results in a POST request to the authz-info endpoint with Content-Format "application/cwt", as per <xref section="5.10" sectionFormat="of" target="RFC9200"/>. However, the DTLS profile of ACE can be combined with application profiles of <xref target="RFC9594"/>. In such a case, the POST request might convey both the access token and additional parameters from C (e.g., "sign_info" defined in <xref section="3.3" sectionFormat="of" target="RFC9594"/>), which requires the request to have Content-Format "application/ace+cbor" (see <xref section="3.3" sectionFormat="of" target="RFC9594"/>).</t>
        </section>
        <section anchor="sec-from_rs">
          <name>from_rs</name>
          <t>The "from_rs" parameter is <bcp14>OPTIONAL</bcp14> to include in an access token response. The presence of this parameter indicates that the AS is relaying the information specified therein to C, which the AS has received from the RS after having successfully uploaded the access token to the RS per the SDC workflow defined in <xref target="sec-workflow"/>.</t>
          <t>The "from_rs" parameter <bcp14>MUST</bcp14> be included in an access token response if both the following conditions apply. Otherwise, it <bcp14>MUST NOT</bcp14> be included.</t>
          <ul spacing="normal">
            <li>
              <t>The corresponding access token request included the "token_upload" parameter (see <xref target="sec-token_upload-req"/>).</t>
            </li>
            <li>
              <t>The access token response includes the "token_upload" parameter with value 0 or 2 (see <xref target="sec-token_upload-resp"/>). That is, the AS has successfully uploaded the issued access token to the RS, as per the SDC workflow.</t>
            </li>
          </ul>
          <t>The information specified in the "from_rs" parameter consists in what C would receive from the RS, if the original workflow was used and the RS sent a successful response encoded in CBOR, in reply to a POST request to the authz-info endpoint.</t>
          <t>When composing the parameter "from_rs", the AS builds a CBOR byte string STR as follows:</t>
          <ul spacing="normal">
            <li>
              <t>If the successful response from the authz-info endpoint does not include a payload, then STR is the empty CBOR byte string (0x40); otherwise,</t>
            </li>
            <li>
              <t>The value of STR is the payload of the successful response from the authz-info endpoint.  </t>
              <t>
If and only if the response specifies a given Content-Format ct (i.e., by means of the CoAP Content-Format Option), then the AS <bcp14>MUST</bcp14> tag the CBOR byte string STR (see <xref section="3.4" sectionFormat="of" target="RFC8949"/>). The tag number TN <bcp14>MUST</bcp14> be the one associated with the Content-Format ct and is determined according to the technique described in <xref section="B" sectionFormat="of" target="RFC9277"/>.</t>
            </li>
          </ul>
          <t>When the access token response is encoded in CBOR, the value of the "from_rs" parameter is the (tagged) CBOR byte string STR.</t>
          <t>When the access token response is encoded in JSON, the value of the "from_rs" parameter is a text string, which encodes the binary representation of the (tagged) CBOR byte string STR in base64url without padding (see <xref section="5" sectionFormat="of" target="RFC4648"/>).</t>
          <t>When C receives from the AS the access token response specifying the "token_upload" parameter with value 0 or 2, C retrieves from the "from_rs" parameter the information relayed by the AS, just like when retrieving that information from a successful response with Content-Format ct that C receives from the RS when using the original workflow.</t>
          <t>In particular, if the CBOR byte string STR is not the empty CBOR byte string (0x40), C considers as the Content-Format ct either:</t>
          <ul spacing="normal">
            <li>
              <t>the one employed in the profile of ACE used, if the CBOR byte string STR conveyed by the "from_rs" parameter is not tagged; or, otherwise,</t>
            </li>
            <li>
              <t>the one associated with the tag number TN of the tagged CBOR byte string STR conveyed by the "from_rs" parameter.</t>
            </li>
          </ul>
        </section>
        <section anchor="sec-to_rs-from_rs-oscore-profile">
          <name>Use with the OSCORE Profile</name>
          <t>This section describes how to use the parameters "to_rs" and "from_rs" when the OSCORE profile of ACE <xref target="RFC9203"/> is used.</t>
          <t>Within the access token request from C to the AS, the value of the "to_rs" parameter is a CBOR byte string, whose value is the binary representation of a CBOR map C_MAP composed of two fields:</t>
          <ul spacing="normal">
            <li>
              <t>A field with the CBOR integer 40 as map key and with value the nonce N1 generated by C, encoded as a CBOR byte string (see <xref section="4.1" sectionFormat="of" target="RFC9203"/>).</t>
            </li>
            <li>
              <t>A field with the CBOR integer 43 as map key and with value the Recipient ID ID1 generated by C, encoded as a CBOR byte string (see <xref section="4.1" sectionFormat="of" target="RFC9203"/>).</t>
            </li>
          </ul>
          <t>When building the POST request for uploading the access token to the authz-info endpoint at the RS, the AS sets the Content-Format of the request to "application/ace+cbor" and composes the request payload as specified in <xref section="4.1" sectionFormat="of" target="RFC9203"/>. In particular, the CBOR map specified as payload includes:</t>
          <ul spacing="normal">
            <li>
              <t>The "access_token" field, with value the access token to upload encoded as a CBOR byte string and with the CBOR integer 1 as map key.</t>
            </li>
            <li>
              <t>The "nonce1" field, with value the same CBOR byte string specified by the field of C_MAP that has the CBOR integer 40 as map key.</t>
            </li>
            <li>
              <t>The "ace_client_recipientid" field, with value the same CBOR byte string specified by the field of C_MAP that has the CBOR integer 43 as map key.</t>
            </li>
          </ul>
          <t>If the upload of the access token to the RS from the AS is successful, the RS replies to the AS with a 2.01 (Created) response, which has Content-Format "application/ace+cbor" and whose payload is a CBOR map RS_MAP that includes:</t>
          <ul spacing="normal">
            <li>
              <t>The "nonce2" field, with value the nonce N2 generated by the RS, encoded as a CBOR byte string (see <xref section="4.2" sectionFormat="of" target="RFC9203"/>).</t>
            </li>
            <li>
              <t>The "ace_server_recipientid" field, with value the Recipient ID ID2 generated by the RS, encoded as a CBOR byte string (see <xref section="4.2" sectionFormat="of" target="RFC9203"/>).</t>
            </li>
          </ul>
          <t>Within the access token response from the AS to C, the value of the "from_rs" parameter is a CBOR byte string, whose value is the binary representation of a CBOR map composed of two elements:</t>
          <ul spacing="normal">
            <li>
              <t>A field with the CBOR integer 42 as map key and with value the same CBOR byte string specified by the "nonce2" field of RS_MAP.</t>
            </li>
            <li>
              <t>A field with the CBOR integer 44 as map key and with value the same CBOR byte string specified by the "ace_server_recipientid" field of RS_MAP.</t>
            </li>
          </ul>
          <t>When C receives from the AS the access token response specifying the "token_upload" parameter with value 0, C retrieves the nonce N2 and the Recipient ID ID2 from the "from_rs" parameter, just like when retrieving those from the payload of a 2.01 (Created) response received from the RS when using the original workflow.</t>
          <t><xref target="fig-example-AS-to-C-token-upload-oscore-profile"/> shows an example where the OSCORE profile is used, with first an access token request from C to the AS and then an access token response from the AS to C, following the issue of an access token bound to a symmetric PoP key.</t>
          <t>The access token request specifies the "token_upload" parameter with value 0. That is, C indicates that it requires neither the access token nor the corresponding token hash from the AS, in the case that the AS successfully uploads the access token to the RS. Also, the access token request includes the "to_rs" parameter, specifying the values of N1 = 0x018a278f7faab55a and ID1 = 0x1645 intended to the RS.</t>
          <t>The access token response specifies the "token_upload" parameter with value 0, which indicates that the AS has successfully uploaded the access token to the RS on behalf of C.</t>
          <t>Consistent with the value of the "token_upload" parameter in the access token request, the access token response includes neither the access token nor its corresponding token hash. The access token response also includes the "cnf" parameter specifying the symmetric PoP key bound to the access token, as an OSCORE_Input_Material object (see <xref section="3.2.1" sectionFormat="of" target="RFC9203"/>). Also, the access token response includes the "from_rs" parameter, specifying the values of N2 = 0x25a8991cd700ac01 and ID2 = 0x0000 received from the RS and intended to C.</t>
          <figure anchor="fig-example-AS-to-C-token-upload-oscore-profile">
            <name>Example of Access Token Request-Response Exchange where the OSCORE Profile is Used. Following a successful uploading of the access token from the AS to the RS, the access token response includes the "token_upload" parameter but not the access token, which is bound to a symmetric key and was uploaded to the RS by the AS. C and the RS exchange N1, ID1, N2, and ID2 via the AS by means of the parameters "to_rs" and "from_rs".</name>
            <artwork><![CDATA[
   Access token request

   Header: POST (Code=0.02)
   Uri-Host: "as.example.com"
   Uri-Path: "token"
   Content-Format: 19 (application/ace+cbor)
   Payload:
   {
     / audience /  5 : "tempSensor4711",
     / scope /     9 : "read",
     e'token_upload' : 0,
            e'to_rs' : h'a2182848018a278f7faab55a182b421645'
   }


   Access token response

   Header: Created (Code=2.01)
   Content-Format: 19 (application/ace+cbor)
   Max-Age: 3560
   Payload:
   {
        e'token_upload' : 0,
             e'from_rs' : h'a2182a4825a8991cd700ac01182c420000',
     / ace_profile / 38 : 2 / coap_oscore /,
       / expires_in / 2 : 3600,
       / cnf /        8 : {
         / osc / 4 : {
           / id / 0 : h'01',
           / ms / 2 : h'f9af838368e353e78888e1426bd94e6f'
         }
       }
   }
]]></artwork>
          </figure>
        </section>
      </section>
      <section anchor="sec-rs_cnf2-audience2">
        <name>rs_cnf2 and audience2</name>
        <t>This section defines the additional parameters "rs_cnf2" and "audience2". The two parameters can be used in an access token response sent by the AS (see <xref section="5.8.2" sectionFormat="of" target="RFC9200"/>), in reply to an access token request sent to the token endpoint by C.</t>
        <ul spacing="normal">
          <li>
            <t>The "rs_cnf2" parameter is <bcp14>OPTIONAL</bcp14> to include in an access token response, if the token type is "pop", asymmetric keys are used, and the access token is issued for an audience that includes multiple RSs (i.e., a group-audience, see <xref section="6.9" sectionFormat="of" target="RFC9200"/>). Otherwise, the "rs_cnf2" parameter <bcp14>MUST NOT</bcp14> be included.  </t>
            <t>
Also, the "rs_cnf2" parameter <bcp14>MUST NOT</bcp14> be included if the issued access token is not the first one of a new token series.  </t>
            <t>
This parameter specifies information about the public keys used by the RSs of the group-audience for authenticating themselves to C. It is used in the case that the binding between the public keys and the corresponding RS identities are not established through other means. If this parameter is absent, either the RSs in the group-audience do not use a public key, or the AS knows that the RSs can authenticate themselves to C without additional information.  </t>
            <t>
If included, this parameter <bcp14>MUST</bcp14> encode a non-empty array of N elements, where N is the number of RSs in the group-audience for which the access token is issued. The array is encoded as a CBOR array or a JSON array, depending on whether the access token response is encoded in CBOR or JSON, respectively.  </t>
            <t>
Each element of the array specifies the public key of an RS in the group-audience, and it <bcp14>MUST</bcp14> follow the syntax and semantics of the "cnf" claim either from <xref section="3.1" sectionFormat="of" target="RFC8747"/> for CBOR-based interactions, or from <xref section="3.1" sectionFormat="of" target="RFC7800"/> for JSON-based interactions. It is not required that all the elements of the array rely on the same confirmation method.  </t>
            <t>
Any of the public keys may be provided together with information such as the public key algorithm and use (e.g., specified by means of the parameters "alg" and "key_ops" in a COSE_Key structure). If such information is specified, a client <bcp14>MUST NOT</bcp14> use a public key that is incompatible with the profile of ACE used or with the PoP algorithm according to that information. An RS <bcp14>MUST</bcp14> reject a proof of possession that relies on such a key and <bcp14>MUST</bcp14> reply with a response code equivalent to the CoAP code 4.00 (Bad Request).</t>
          </li>
          <li>
            <t>The "audience2" parameter is <bcp14>OPTIONAL</bcp14> to include in an access token response, and it specifies the identifiers of the RSs in the group-audience for which the access token is issued.  </t>
            <t>
The "audience2" parameter <bcp14>MUST NOT</bcp14> be included if the issued access token is not the first one of a new token series.  </t>
            <t>
If included, this parameter <bcp14>MUST</bcp14> encode a non-empty array of N elements, where N is the number of RSs in the group-audience for which the access token is issued. The array is encoded as a CBOR array or a JSON array, depending on whether the access token response is encoded in CBOR or JSON, respectively.  </t>
            <t>
Each element of the array in the "audience2" parameter specifies the identifier of an RS in the group-audience. The value of each element of the array is encoded as a CBOR text string or a JSON string, depending on whether the access token response is encoded in CBOR or JSON, respectively.  </t>
            <t>
The element of the array referring to an RS in the group-audience <bcp14>SHOULD</bcp14> have the same value that would be used to identify that RS through the "audience" parameter of an access token request to the AS (see <xref section="5.8.1" sectionFormat="of" target="RFC9200"/>) and of an access token response from the AS (see <xref section="5.8.2" sectionFormat="of" target="RFC9200"/>), when requesting and issuing an access token for that individual RS.  </t>
            <t>
The "audience2" parameter <bcp14>MUST</bcp14> be included if the "rs_cnf2" parameter is included. In such a case, the i-th element of the array in the "audience2" parameter <bcp14>MUST</bcp14> be the identifier of the RS whose public key is specified by the i-th element of the array in the "rs_cnf2" parameter.</t>
          </li>
        </ul>
        <section anchor="example-1">
          <name>Example</name>
          <t><xref target="fig-example-AS-to-C-rs_cnf2"/> shows an example of access token response from the AS to C, following the issue of an access token for a group-audience composed of two RSs, namely "rs1" and "rs2", and bound to C's public key as an asymmetric PoP key. The access token response includes the access token as well as the parameters "audience2" and "rs_cnf2". These parameters specify the public keys of the two RSs as the intended recipients of the access token and the identifiers of those two RSs, respectively.</t>
          <figure anchor="fig-example-AS-to-C-rs_cnf2">
            <name>Example of access token response with an access token bound to an asymmetric key, using the parameters "audience2" and "rs_cnf2".</name>
            <artwork><![CDATA[
   Access token response

   Header: Created (Code=2.01)
   Content-Format: 19 (application/ace+cbor)
   Max-Age: 3600
   Payload:
   {
     / access_token / 1 : b64'SlAV32hk...12',
       / (full CWT elided for brevity;
          CWT contains the client's RPK in the "cnf" claim) /
     / expires_in /   2 : 3600,
           e'audience2' : ["rs1", "rs2"],
             e'rs_cnf2' : [
               {
                 / COSE_Key / 1 : {
                   / kty /  1 : 2 / EC2 /,
                   / crv / -1 : 1 / P-256 /,
                   / x /   -2 : h'bbc34960526ea4d32e940cad2a234148
                                  ddc21791a12afbcbac93622046dd44f0',
                   / y /   -3 : h'4519e257236b2a0ce2023f0931f1f386
                                  ca7afda64fcde0108c224c51eabf6072'
                 }
               },
               {
                 / COSE_Key / 1 : {
                   / kty /  1 : 2 / EC2 /,
                   / crv / -1 : 1 / P-256 /,
                   / x /   -2 : h'ac75e9ece3e50bfc8ed6039988952240
                                  5c47bf16df96660a41298cb4307f7eb6',
                   / y /   -3 : h'6e5de611388a4b8a8211334ac7d37ecb
                                  52a387d257e6db3c2a93df21ff3affc8'
                 }
               }
             ]
   }
]]></artwork>
          </figure>
        </section>
      </section>
      <section anchor="sec-anchor_cnf">
        <name>anchor_cnf</name>
        <t>This section defines the additional "anchor_cnf" parameter. The parameter can be used in an access token response sent by the AS (see <xref section="5.8.2" sectionFormat="of" target="RFC9200"/>), in reply to an access token request sent to the token endpoint by C.</t>
        <t>The "anchor_cnf" parameter is <bcp14>OPTIONAL</bcp14> to include in an access token response, if the token type is "pop" and asymmetric keys are used. Otherwise, the "anchor_cnf" parameter <bcp14>MUST NOT</bcp14> be included.</t>
        <t>Also, the "anchor_cnf" parameter <bcp14>MUST NOT</bcp14> be included if the issued access token is not the first one of a new token series.</t>
        <t>This parameter specifies information about the public keys of trust anchors, which C can use to validate the public key of the RS/RSs included in the audience for which the access token is issued. This parameter can be used when the access token is issued for an audience including one RS or multiple RSs.</t>
        <t>If this parameter is absent, either the RS/RSs in the audience do not use a public key, or the AS knows that C can validate the public key of such RS/RSs without additional information (e.g., C has already obtained the required public keys of the involved trust anchors from the AS or through other means).</t>
        <t>If included, this parameter <bcp14>MUST</bcp14> encode a non-empty array that <bcp14>MUST</bcp14> be treated as a set, i.e., the order of its elements has no meaning. Each element of the array specifies the public key of one trust anchor, which can be used to validate the public key of at least one RS included in the audience for which the access token is issued. The array is encoded as a CBOR array or a JSON array, depending on whether the access token response is encoded in CBOR or JSON, respectively.</t>
        <t>Each element of the array <bcp14>MUST</bcp14> follow the syntax and semantics of the "cnf" claim either from <xref section="3.1" sectionFormat="of" target="RFC8747"/> for CBOR-based interactions, or from <xref section="3.1" sectionFormat="of" target="RFC7800"/> for JSON-based interactions. It is not required that all the elements of the array rely on the same confirmation method.</t>
        <t>Any of the public keys conveyed in the "anchor_cnf" parameter may be provided together with information such as the public key algorithm and use (e.g., specified by means of the parameters "alg" and "key_ops" in a COSE_Key structure). If such information is specified, a client <bcp14>MUST NOT</bcp14> use a public key that is incompatible with the profile of ACE used or with the public keys to validate and the way to validate those.</t>
        <t>The presence of this parameter does not require that the access token response also includes the "rs_cnf" parameter defined in <xref target="RFC9201"/> or the "rs_cnf2" parameter defined in <xref target="sec-rs_cnf2-audience2"/> of the present document. That is, C may be able to obtain the public keys of the RS/RSs for which the access token is issued through other means.</t>
        <t>When the access token response includes both the "anchor_cnf" parameter and the "audience2" parameter defined in <xref target="sec-rs_cnf2-audience2"/>, then C <bcp14>MUST</bcp14> make sure that a public key PK_RS is associated with an RS identified by an element of "audience2", before using any of the public keys specified in "anchor_cnf" to validate PK_RS.</t>
        <t>When the access token response includes the "anchor_cnf" parameter but not the "audience2" parameter, then C can use any of the public keys specified in "anchor_cnf" to validate the public key PK_RS of any RS in the targeted audience. This allows C to use the access token with an RS that is deployed later on as part of the same audience, which is particularly useful in the case of a group-audience.</t>
        <section anchor="example-2">
          <name>Example</name>
          <t><xref target="fig-example-AS-to-C-anchor_cnf"/> shows an example of access token response from the AS to C, following the issue of an access token for a group-audience and bound to C's public key as an asymmetric PoP key.</t>
          <t>The identifier of the group-audience was specified by the "audience" parameter of the access token request to the AS, is specified by the "aud" claim of the issued access token, and is not repeated in the access token response from the AS.</t>
          <t>The access token response includes the "anchor_cnf" parameter. This specifies the public key of a trust anchor that C can use to validate the public keys of any RS with which the access token is going to be used. By means of the CWT confirmation method "x5chain" defined in <xref target="I-D.ietf-ace-edhoc-oscore-profile"/>, the public key of the trust anchor is here conveyed within an X.509 certificate <xref target="RFC5280"/> used as the public authentication credential for that trust anchor.</t>
          <figure anchor="fig-example-AS-to-C-anchor_cnf">
            <name>Example of Access Token Response with an access token bound to an asymmetric key, using the "anchor_cnf" parameter.</name>
            <artwork><![CDATA[
   Access token response

   Header: Created (Code=2.01)
   Content-Format: 19 (application/ace+cbor)
   Max-Age: 3600
   Payload:
   {
     / access_token / 1 : b64'SlAV32hk...12',
       / (full CWT elided for brevity;
          CWT contains the client's RPK in the "cnf" claim) /
     / expires_in /   2 : 3600,
          e'anchor_cnf' : [
            {
              e'x5chain' : h'308201363081dea003020102020301f50d30
                             0a06082a8648ce3d04030230163114301206
                             035504030c0b524643207465737420434130
                             1e170d3230303130313030303030305a170d
                             3231303230323030303030305a3022312030
                             1e06035504030c1730312d32332d34352d46
                             462d46452d36372d38392d41423059301306
                             072a8648ce3d020106082a8648ce3d030107
                             03420004b1216ab96e5b3b3340f5bdf02e69
                             3f16213a04525ed44450b1019c2dfd3838ab
                             ac4e14d86c0983ed5e9eef2448c6861cc406
                             547177e6026030d051f7792ac206a30f300d
                             300b0603551d0f040403020780300a06082a
                             8648ce3d04030203470030440220445d798c
                             90e7f500dc747a654cec6cfa6f037276e14e
                             52ed07fc16294c84660d02205a33985dfbd4
                             bfdd6d4acf3804c3d46ebf3b7fa62640674f
                             c0354fa056dbaea6'
            }
          ]
   }
]]></artwork>
          </figure>
        </section>
      </section>
      <section anchor="sec-token_series_id">
        <name>token_series_id</name>
        <t>This section defines the additional "token_series_id" parameter. The parameter can be used in an access token request sent by C to the token endpoint at the AS (see <xref section="5.8.1" sectionFormat="of" target="RFC9200"/>), as well as in the access token response sent as a reply by the AS (see <xref section="5.8.2" sectionFormat="of" target="RFC9200"/>).</t>
        <t>The following refers to the base64url encoding without padding (see <xref section="5" sectionFormat="of" target="RFC4648"/>).</t>
        <ul spacing="normal">
          <li>
            <t>The "token_series_id" parameter is <bcp14>OPTIONAL</bcp14> to include in an access token request. The presence of this parameter indicates that C wishes to obtain a new access token for dynamically updating its access rights. That is, the new access token is intended to be the next one in an active token series and to supersede the latest access token in that token series.  </t>
            <t>
The "token_series_id" parameter <bcp14>MUST NOT</bcp14> be included in an access token request, if the requested access token is the first one of a new token series.  </t>
            <t>
If included, this parameter specifies the binary identifier of the token series that the new access token is intended to extend. The identifier does not change throughout the duration of the token series and was provided to C in the access token response that the AS sent when issuing the first access token in that token series.  </t>
            <t>
When the access token request is encoded in CBOR, this parameter is a CBOR byte string, with value the identifier of the token series. When the access token request is encoded in JSON, this parameter has as value the base64url-encoded text string that encodes the identifier of the token series.</t>
          </li>
          <li>
            <t>The "token_series_id" parameter is <bcp14>OPTIONAL</bcp14> to include in an access token response.  </t>
            <t>
The "token_series_id" parameter <bcp14>MUST NOT</bcp14> be included in an access token response, if the issued access token is not the first one of a new token series.  </t>
            <t>
If included, this parameter specifies the binary identifier of the token series to which the issued access token belongs.  </t>
            <t>
When the access token response is encoded in CBOR, this parameter is a CBOR byte string, with value the identifier of the token series. When the access token request is encoded in JSON, this parameter has as value the base64url-encoded text string that encodes the identifier of the token series.</t>
          </li>
        </ul>
        <t>If the AS relies on the "token_series_id" parameter to exchange the identifier of token series with clients, then the following applies.</t>
        <ul spacing="normal">
          <li>
            <t>The value assigned to the identifier of a token series <bcp14>MUST</bcp14> be associated with all the access tokens issued by the AS for that token series and <bcp14>MUST</bcp14> be selected from a pool that the AS exclusively controls.  </t>
            <t>
In particular, the triple (TS_ID, C, AUD) <bcp14>MUST</bcp14> uniquely identify a token series and its corresponding access tokens, where TS_ID is the identifier of the token series, while C and AUD are the client and the audience for which the access token is issued, respectively. The AS <bcp14>MUST</bcp14> take into account both ongoing and ended token series for selecting a new TS_ID that complies with the above requirements.  </t>
            <t>
Note that the ACE profile is not part of the triple, hence the requirement spans across all the ACE profiles that the AS and its registered clients/RSs support.</t>
          </li>
          <li>
            <t>An issued access token that belongs to a token series <bcp14>MUST</bcp14> include the identifier of that token series. This allows the RS to identify the latest access token in the token series to be superseded by the issued access token.  </t>
            <t>
In particular, each of such access tokens <bcp14>MUST</bcp14> include a claim specifying the identifier of the token series to which the access token belongs.  </t>
            <t>
When CWTs are used as access tokens, such claim can be the "token_series_id" claim registered in <xref target="iana-token-cwt-claims"/>, which has the same semantics as the "token_series_id" parameter of an access token response encoded in CBOR.  </t>
            <t>
When JWTs are used as access tokens, such claim can be the "token_series_id" claim registered in <xref target="iana-token-json-claims"/>, which has the same semantics as the "token_series_id" parameter of an access token response encoded in JSON.</t>
          </li>
        </ul>
        <t>If a profile of ACE relies on a construct that uses different parameters/claims to transport the identifier of a token series, then the new "token_series_id" parameter and "token_series_id" claim <bcp14>MUST NOT</bcp14> be used when using that profile.</t>
        <t>For example, a number of parameters/claims are already used to transport information that acts as de facto identifier of token series, in the PSK mode of the DTLS profile <xref target="RFC9202"/>, in the OSCORE profile <xref target="RFC9203"/>, and in the EDHOC and OSCORE profile <xref target="I-D.ietf-ace-edhoc-oscore-profile"/>.</t>
      </section>
      <section anchor="sec-updated_rights">
        <name>updated_rights</name>
        <t>This section defines the additional "updated_rights" parameter. The parameter can be used in a POST request sent by the AS to the authz-info endpoint at the RS (see <xref section="5.10.1" sectionFormat="of" target="RFC9200"/>), when the AS uploads an access token to the RS per the SDC workflow defined in <xref target="sec-workflow"/> of the present document. The "updated_rights" parameter <bcp14>MUST NOT</bcp14> be included in the POST request to the authz-info endpoint sent by C per the original workflow defined in <xref target="RFC9200"/>.</t>
        <t>The "updated_rights" parameter <bcp14>MUST</bcp14> be included in the POST request sent by the AS to the authz-info endpoint at the RS, if the uploaded access token is not the first one of a new token series, i.e., if the AS has issued the access token for dynamically updating the access rights of C. Otherwise, the "updated_rights" parameter <bcp14>MUST NOT</bcp14> be included.</t>
        <t>When including the "updated_rights" parameter, the following applies:</t>
        <ul spacing="normal">
          <li>
            <t>If the POST request is encoded in CBOR, the request <bcp14>MUST</bcp14> have media type "application/ace+cbor" and its payload <bcp14>MUST</bcp14> be formatted as a CBOR map. In particular, the CBOR map <bcp14>MUST</bcp14> include the "updated_rights" parameter encoding the CBOR simple value <tt>true</tt> (0xf5), together with the "access_token" parameter specifying the access token. The CBOR map <bcp14>MAY</bcp14> include additional parameters, according to the specific profile of ACE used.</t>
          </li>
          <li>
            <t>If the POST request is encoded in JSON, the request <bcp14>MUST</bcp14> have media type "application/ace+json" and its payload <bcp14>MUST</bcp14> be formatted as a JSON object. In particular, the JSON object <bcp14>MUST</bcp14> include the "updated_rights" parameter with value <tt>true</tt>, together with the "access_token" parameter specifying the access token. The JSON object <bcp14>MAY</bcp14> include additional parameters, according to the specific profile of ACE used.</t>
          </li>
        </ul>
        <t>Note that this request deviates from the POST request defined in <xref target="RFC9200"/>, although such a deviation can already occur in some profiles of ACE (e.g., see <xref section="4.1" sectionFormat="of" target="RFC9203"/>) or in application profiles of <xref target="RFC9594"/>.</t>
        <t>The following focuses on interactions with the authz-info endpoint at the RS where messages are encoded in CBOR. The same as described below holds in the case that such messages are encoded in JSON and have media type "application/ace+json", with the difference that the "updated_rights" parameter with value <tt>true</tt> can be present within a JSON object conveyed by a POST request to the  authz-info endpoint.</t>
        <section anchor="sec-updated_rights-rs">
          <name>Processing at the RS</name>
          <t>When the RS receives a protected POST request to the authz-info endpoint from the AS and the request does not convey the "updated_rights" parameter, the RS is ensured that the access token conveyed in the request is the first one of a new token series, which the RS processes accordingly (see <xref target="sec-as-token-upload"/>).</t>
          <t>When the RS receives a protected POST request to the authz-info endpoint from the AS and the request conveys the "updated_rights" parameter encoding the CBOR simple value <tt>true</tt> (0xf5), the RS is ensured that the access token conveyed in the request is not the first one of a new token series.</t>
          <t>Taking advantage of such explicit indication requires the RS to support the Content-Format "application/ace+cbor" and the "updated_rights" parameter.</t>
          <t>If the RS does not support the Content-Format "application/ace+cbor", the RS rejects the POST request from the AS and replies with an error response that has a response code equivalent to the CoAP code 4.15 (Unsupported Content-Format). Note that, irrespective of the profile of ACE used, the RS supports the Content-Format "application/ace+cbor" if it implements token introspection as defined in <xref section="5.9" sectionFormat="of" target="RFC9200"/>.</t>
          <t>If the RS supports the Content-Format "application/ace+cbor" but does not support the "updated_rights" parameter, the RS rejects the POST request from the AS and replies with an error response that has a response code equivalent to the CoAP code 4.00 (Bad Request).</t>
          <t>In the case that a POST request to the authz-info endpoint includes the "updated_rights" parameter, the RS supports the parameter, and any of the following conditions applies, then the RS <bcp14>MUST</bcp14> reject the request and <bcp14>MUST</bcp14> reply with an error response that has a response code equivalent to the CoAP code 4.00 (Bad Request):</t>
          <ul spacing="normal">
            <li>
              <t>The request is not protected.</t>
            </li>
            <li>
              <t>The AS is not successfully verified as the originator of the request.</t>
            </li>
            <li>
              <t>The "updated_rights" parameter does not encode the CBOR simple value <tt>true</tt> (0xf5).</t>
            </li>
          </ul>
          <t>If none of the error conditions above applies and the request is valid, then the RS leverages the "updated_rights" parameter encoding the CBOR simple value <tt>true</tt> (0xf5) as an indication from the AS that the access token conveyed in the POST request, namely T_NEW, is not the first one of its token series. That is, the access token is meant to dynamically update the access rights of C, while preserving the same secure communication association that is shared between C and the RS.</t>
          <t>In this case, the RS uses lookup information specified within T_NEW to determine whether it stores an access token T_OLD associated with C and belonging to the same token series of T_NEW. Such lookup information includes an identifier of the token series to which both T_NEW and T_OLD belong, and it can further comprise additional information elements pertaining to the specific profile of ACE used (e.g., the authentication credential of C that is bound to the access tokens of the token series).</t>
          <t>By leveraging such lookup information, the RS checks whether it stores an access token T_OLD that belongs to the same token series of T_NEW, like it would when receiving the request from C and according to the specific profile of ACE used.</t>
          <t>If the RS is currently storing such an old access token T_OLD and successfully validates the access token T_NEW, then the RS <bcp14>MUST</bcp14> supersede T_OLD by replacing the corresponding authorization information with the one specified in the new access token T_NEW. After that, the RS <bcp14>MUST</bcp14> associate T_NEW with the same secure communication association with which T_OLD was associated. Finally, the RS replies to the AS with a successful response.</t>
          <t>Instead, if the RS is not currently storing such an old access token T_OLD, then the RS <bcp14>MUST</bcp14> reject the POST request from the AS and <bcp14>MUST</bcp14> reply with an error response that has a response code equivalent to the CoAP code 5.00 (Internal Server Error). The error response is analogous to error responses sent by the AS (see <xref section="5.8.3" sectionFormat="of" target="RFC9200"/>) and <bcp14>MUST</bcp14> include the error code "missing_old_token". The error code and its CBOR abbreviation are registered in <xref target="iana-oauth-extensions-errors"/> and <xref target="iana-oauth-error-code-cbor-mappings"/>, respectively.</t>
          <t>The explicit indication provided by the "updated_rights" parameter prevents possible ambiguous situations, where the RS might erroneously believe that the access token conveyed in the POST request is the first one of a new token series (e.g., following the deletion of stored access tokens due to memory limitations). --- Editor's note: elaborate more in the "Security Considerations" section.</t>
        </section>
        <section anchor="sec-updated_rights-as">
          <name>Follow-up at the AS</name>
          <t>After sending to the authz-info endpoint a protected POST request that conveys the access token T_NEW and the "updated_rights" parameter encoding the CBOR simple value true (0xf5), the AS proceeds as follows when receiving a response from the RS.</t>
          <ul spacing="normal">
            <li>
              <t>If the AS receives a successful response, the AS replies to C with an access token response, consistent with the issue of the access token T_NEW. The access token response includes the "token_upload" parameter encoding the value 0 (see <xref target="sec-token_upload-resp"/>). Also, the access token response includes the "access_token" parameter, or the "token_hash" parameter, or none of those, depending on the value of the "token_upload" parameter in the corresponding access token request.</t>
            </li>
            <li>
              <t>If the AS receives an error response that includes the error code "missing_old_token" (see <xref target="sec-updated_rights-rs"/>), the AS proceeds as defined in <xref target="sec-new-series-on-the-fly"/>.</t>
            </li>
            <li>
              <t>If the AS receives any other error response, the AS replies to C with an access token response, consistent with the issue of the access token T_NEW. The access token response includes the "access_token" parameter specifying the access token T_NEW and the "token_upload" parameter encoding the value 1 (see <xref target="sec-token_upload-resp"/>).</t>
            </li>
          </ul>
          <t>The AS <bcp14>MUST</bcp14> ignore the error code "missing_old_token", if the POST request did not convey the "updated_rights" parameter encoding the CBOR simple value <tt>true</tt> (0xf5).</t>
          <t>In the case that the access token T_NEW targets a group-audience (see <xref section="6.9" sectionFormat="of" target="RFC9200"/>), what is specified in <xref target="sec-token_upload-resp"/> about the token upload at the RSs in the group-audience applies to T_NEW.</t>
          <section anchor="sec-new-series-on-the-fly">
            <name>New Token Series Created on the Fly</name>
            <t>As defined in <xref target="sec-updated_rights-rs"/>, the RS replies to the AS with an error response that includes the error code "missing_old_token", if the RS cannot find the old access token T_OLD to supersede with the access token T_NEW that the AS uploaded to the authz-info endpoint.</t>
            <t>Profiles of ACE typically prescribe that, in such case, the RS does not have anymore the secure communication association that was previously shared with C and bound to T_OLD.</t>
            <t>Therefore, if the AS simply completes the issue of T_NEW and provides it to C, this would result in C sending a protected POST request including T_NEW to the authz-info endpoint at the RS, according to the original workflow. However, since the RS does not store T_OLD and does not have the corresponding secure communication association used by C to protect the POST request, the RS would reply to C with an unprotected error response. After that, C would finally send a new access token request to the token endpoint at the AS, asking for a new access token of a new token series.</t>
            <t>Instead, under the specific circumstance in question, the procedure defined below avoids that C and the RS perform such an inefficient and unsuccessful exchange. In the interest of performing this procedure, an AS that supports the SDC workflow <bcp14>MUST</bcp14> store the access token request that results in issuing the first access token of a token series, until the token series ends.</t>
            <t>After having uploaded T_NEW to the RS and received an error response that includes the error code "missing_old_token", the AS creates a new token series "on the fly", as defined below.</t>
            <t>The rest of this section uses the following notation:</t>
            <ul spacing="normal">
              <li>
                <t>REQ_STORED: the access token request that resulted in the AS issuing the first access token of the token series to which T_OLD and T_NEW belong.</t>
              </li>
              <li>
                <t>REQ_RECEIVED: the access token request that resulted in the AS composing T_NEW and attempting to upload it at the RS with no success.</t>
              </li>
            </ul>
            <t>The AS performs the following steps.</t>
            <ol spacing="normal" type="1"><li>
                <t>The AS retrieves REQ_STORED from its local storage.</t>
              </li>
              <li>
                <t>The AS composes a new access token request REQ_BUILT that is equal to REQ_STORED retrieved at Step 1, with the following differences:  </t>
                <ul spacing="normal">
                  <li>
                    <t>The "scope" parameter is present in REQ_BUILT if and only if the "scope" parameter is present in the access token request REQ_RECEIVED. If present, the "scope" parameter in REQ_BUILT specifies the same scope that is specified by the "scope" parameter within REQ_RECEIVED.</t>
                  </li>
                  <li>
                    <t>The parameters "token_upload" (see <xref target="sec-token_upload"/>), "to_rs" (see <xref target="sec-to_rs"/>), and "cnonce" (see <xref section="5.8.4.4" sectionFormat="of" target="RFC9200"/>) are not included in REQ_BUILT.</t>
                  </li>
                </ul>
              </li>
              <li>
                <t>The AS revokes the access tokens T_OLD and T_NEW, thus ending the token series they belong to. The AS can rely on the method defined in <xref target="RFC9770"/> to notify about the revoked access tokens. Then, the AS deletes REQ_STORED from its local storage.</t>
              </li>
              <li>
                <t>The AS processes REQ_BUILT as if it was received from C.  </t>
                <t>
If the AS successfully processes REQ_BUILT, the AS issues an access token T_NEXT as the first access token of a new token series. Like for T_NEW, also T_NEXT is issued to C, for the same targeted audience, and per the same profile of ACE.  </t>
                <t>
Like any other access token request that results in starting a new token series, the AS stores REQ_BUILT throughout the duration of the new token series to which T_NEXT belongs.</t>
              </li>
              <li>
                <t>The AS replies to REQ_RECEIVED with an access token response consistent with the issue of T_NEXT as the first access token of a new token series. In particular, the following applies to the access token response:  </t>
                <ul spacing="normal">
                  <li>
                    <t>The "access_token" parameter is present and specifies the access token T_NEXT.</t>
                  </li>
                  <li>
                    <t>The "token_upload" parameter is present and encodes the value 2 (see <xref target="sec-token_upload-resp"/>).</t>
                  </li>
                  <li>
                    <t>The "scope" parameter is present if and only if: i) it was present in REQ_BUILT and the access rights granted to C are different from the requested ones; or ii) it was not present in REQ_BUILT and the access rights granted to C are different from the default ones.      </t>
                    <t>
If the "scope" parameter is not present, then the granted access rights are those requested by the "scope" parameter in REQ_BUILT if present therein, or the default access rights otherwise.      </t>
                    <t>
The granted access rights are specified by the issued access token T_NEXT.</t>
                  </li>
                </ul>
              </li>
            </ol>
          </section>
        </section>
      </section>
    </section>
    <section anchor="sec-updated-ace-profile-parameter">
      <name>Updated "ace_profile" Parameter</name>
      <t>This section extends the semantics of the "ace_profile" parameter defined in <xref target="RFC9200"/> for the OAuth 2.0 token endpoint at the AS.</t>
      <t>In addition to what is specified in Sections <xref target="RFC9200" section="5.8.1" sectionFormat="bare"/>, <xref target="RFC9200" section="5.8.2" sectionFormat="bare"/>, and <xref target="RFC9200" section="5.8.4.3" sectionFormat="bare"/> of <xref target="RFC9200"/>, the following applies.</t>
      <ul spacing="normal">
        <li>
          <t>When sending an access token request to the token endpoint at the AS (see <xref section="5.8.1" sectionFormat="of" target="RFC9200"/>), C <bcp14>MAY</bcp14> include the "ace_profile" parameter, specifying the identifier of the profile that C wishes to use towards the RS.  </t>
          <t>
The "ace_profile" parameter <bcp14>MUST NOT</bcp14> be included in an access token request, if the requested access token is not the first one of a new token series.</t>
        </li>
        <li>
          <t>If the AS receives an access token request for requesting the first access token of a new token series and the request includes the "ace_profile" parameter specifying the identifier of a profile, then the AS proceeds as follows.  </t>
          <t>
In case the AS does not issue access tokens per the profile specified in the access token request, or C and the RS do not share that profile, then the AS <bcp14>MUST</bcp14> reject the request and <bcp14>MUST</bcp14> reply with an error response (see <xref section="5.8.3" sectionFormat="of" target="RFC9200"/>). The error response <bcp14>MUST</bcp14> have a response code equivalent to the CoAP code 4.00 (Bad Request) and <bcp14>MUST</bcp14> include the error code "incompatible_ace_profiles".  </t>
          <t>
In case the AS issues an access token to C, the access token <bcp14>MUST</bcp14> be per the profile whose identifier was specified by the "ace_profile" parameter in the access token request.  </t>
          <t>
In case the AS replies to C with an access token response (see <xref section="5.8.2" sectionFormat="of" target="RFC9200"/>), then the response <bcp14>MAY</bcp14> include the "ace_profile" parameter. If it is included in the access token response, the "ace_profile" parameter <bcp14>MUST</bcp14> encode the same profile identifier that was specified by the "ace_profile" parameter of the corresponding access token request.  </t>
          <t>
The "ace_profile" parameter <bcp14>MUST NOT</bcp14> be included in the access token response, if the issued access token is not the first one of a new token series.</t>
        </li>
      </ul>
    </section>
    <section anchor="sec-coord-exchanged-cred">
      <name>Coordinating on the Exchange of Public Authentication Credentials</name>
      <t>In some profiles of ACE, it is possible for C and the RS to use public authentication credentials. Depending on the specific profile, the access token request and response exchanged between C and the AS can specify those authentication credentials as transported by value or instead identified by reference. For instance, this is the case in the EDHOC and OSCORE profile <xref target="I-D.ietf-ace-edhoc-oscore-profile"/> and in the DTLS profile <xref target="RFC9202"/> as extended in <xref target="I-D.ietf-ace-authcred-dtls-profile"/>.</t>
      <t>At some point, the AS (C) might become unable to use a credential identifier as a reference for accessing the authentication credential of C (of the RS) obtained earlier, e.g., due to having deleted the credential from its local storage. This can prevent the AS (C) from successfully processing an incoming access token request (response) that specifies the authentication credential of C (of the RS) as identified by reference. Ultimately, this can prevent the AS from issuing an access token and C from securely accessing protected resources at the RS.</t>
      <t>Conversely, unbeknown to the AS, C might already be storing the authentication credential of the RS when sending the access token request. In such a situation, the AS would specify the authentication credential of the RS by value in the access token response. However, it would be sufficient for C that the response specified the credential of the RS as identified by reference, or even that the response omitted the credential altogether.</t>
      <t>In order to allow C and the AS to coordinate on the exchange of the authentication credentials of C and the RS, the rest of this section defines:</t>
      <ul spacing="normal">
        <li>
          <t>How the AS can instruct C to specify its public authentication credential by value in the "req_cnf" parameter of an access token request (see <xref target="sec-cred-c-value"/>).</t>
        </li>
        <li>
          <t>How C can instruct the AS to specify the public authentication credential(s) of the RS(s) by value or by reference in the "rs_cnf" or "rs_cnf2" parameter of an access token response (see <xref target="sec-cred-rs-value"/>), or instead to omit the credential(s) from the access token response.</t>
        </li>
      </ul>
      <section anchor="sec-cred-c-value">
        <name>Instructing C on How to Provide its Authentication Credential</name>
        <t>When the AS receives an access token request and this includes the "req_cnf" parameter identifying the public authentication credential of C by reference, it might happen that the AS is not able to access the credential by using the specified reference.</t>
        <t>In such a case, the AS <bcp14>MUST</bcp14> reject the request and <bcp14>MUST</bcp14> reply with an error response (see <xref section="5.8.3" sectionFormat="of" target="RFC9200"/>). The error response <bcp14>MUST</bcp14> have a response code equivalent to the CoAP code 5.00 (Internal Server Error) and <bcp14>MUST</bcp14> include the error code "unknown_credential_referenced". The error code and its CBOR abbreviation are registered in <xref target="iana-oauth-extensions-errors"/> and <xref target="iana-oauth-error-code-cbor-mappings"/>, respectively.</t>
        <t>After receiving such an error response, C can send a new access token request, where the "req_cnf" parameter specifies the authentication credential of C by value.</t>
      </section>
      <section anchor="sec-cred-rs-value">
        <name>Instructing the AS on How to Provide the RS's Authentication Credential</name>
        <t>When C receives an access token response and this includes the "req_cnf" or "req_cnf2" parameter identifying the authentication credential(s) of the RS(s) by reference, it might happen that C is not able to access the authentication credential(s) by using the specified reference(s).</t>
        <t>Conversely, if the response includes the "rs_cnf" or "rs_cnf2" parameter specifying the authentication credential(s) of the RS(s) by value, it might happen that C has already been storing those credential(s), unbeknown to the AS. In fact, it would have been sufficient that the "rs_cnf" or "rs_cnf2" parameter identified the credential(s) by reference, or that neither parameter was included in the response.</t>
        <t>The following extends the semantics of the "rs_cnf" parameter defined in <xref section="3.2" sectionFormat="of" target="RFC9201"/>, so that C can include the "rs_cnf" parameter in an access token request. When doing so, C instructs the AS about whether and how the access token response should specify the authentication credential(s) of the RS(s) belonging to the targeted audience.</t>
        <t>Per its extended semantics, the "rs_cnf" parameter is also <bcp14>OPTIONAL</bcp14> to include in an access token request when requesting the first access token in a token series, if the token type is "pop" and asymmetric keys are used. In any other case, the parameter <bcp14>MUST NOT</bcp14> be included in an access token request.</t>
        <t>When C includes the "rs_cnf" parameter in an access token request encoded in CBOR, the parameter <bcp14>MUST</bcp14> have one of the following encodings.</t>
        <ul spacing="normal">
          <li>
            <t>If the parameter specifies the CBOR simple value <tt>true</tt> (0xf5), then it instructs the AS to include in the access token response the "rs_cnf" or "rs_cnf2" parameter, specifying the authentication credential(s) of the RS(s) by value.  </t>
            <t>
In the access token response, each pertaining authentication credential <bcp14>MUST</bcp14> be specified by value.</t>
          </li>
          <li>
            <t>If the parameter specifies the CBOR simple value <tt>false</tt> (0xf4), then it instructs the AS to include in the access token response the "rs_cnf" or "rs_cnf2" parameter, specifying the authentication credential(s) of the RS(s) by reference.  </t>
            <t>
In the access token response, each pertaining authentication credential <bcp14>MUST</bcp14> be specified by reference, or alternatively by value only if that was not possible for the AS to attain.</t>
          </li>
          <li>
            <t>If the parameter specifies the CBOR simple value <tt>null</tt> (0xf6), then it instructs the AS to omit the "rs_cnf" and "rs_cnf2" parameters from the access token response.  </t>
            <t>
In the access token response, the "rs_cnf" and "rs_cnf2" parameters <bcp14>MUST NOT</bcp14> be included.</t>
          </li>
        </ul>
        <t>If the access token request is encoded in JSON, the same as above applies, with the difference that the "rs_cnf" parameter specifies as appropriate the corresponding JSON values <tt>true</tt>, <tt>false</tt>, or <tt>null</tt>.</t>
        <t>If the AS is not able to comply in the first two cases above, then the AS <bcp14>MUST</bcp14> reject the request and <bcp14>MUST</bcp14> reply with an error response. The error response <bcp14>MUST</bcp14> have a response code equivalent to the CoAP code 5.00 (Internal Server Error).</t>
        <t>Irrespective of what "rs_cnf" specifies in the access token request, the parameter "rs_cnf" or "rs_cnf2" in the access token response specifies the authentication credential(s) used by the RS(s) to authenticate.</t>
        <t>In the case that C includes the "rs_cnf" parameter in the access token request and C does not currently store the authentication credential(s) of the RS(s) in the targeted audience, then the following applies:</t>
        <ul spacing="normal">
          <li>
            <t>The "rs_cnf" parameter <bcp14>MUST NOT</bcp14> specify the CBOR simple value <tt>null</tt> (0xf6) if the access token request is encoded in CBOR, or the value <tt>null</tt> if the access token request is encoded in JSON.</t>
          </li>
          <li>
            <t>The "rs_cnf" parameter <bcp14>SHOULD NOT</bcp14> specify the CBOR simple value <tt>false</tt> (0xf4) if the access token request is encoded in CBOR, or the value <tt>false</tt> if the access token request is encoded in JSON. Exceptions apply if C is confident that it can later acquire and validate the authentication credential(s) of the RS(s) by other means, e.g., by using the references provided by the AS for retrieval from a trusted repository.</t>
          </li>
        </ul>
      </section>
    </section>
    <section anchor="sec-error-failed-pop">
      <name>Failed Verification of Proof of Possession at the AS</name>
      <t>When sending an access token request to the AS (see <xref section="5.8.1" sectionFormat="of" target="RFC9200"/>), a client can include the "req_cnf" parameter defined in <xref section="3.1" sectionFormat="of" target="RFC9201"/> in order to provide the AS with a specific PoP key to bind to the requested access token.</t>
      <t>Typically, the PoP key in question is the client's public key. In such a case, as per <xref section="3.1" sectionFormat="of" target="RFC9201"/>, the AS has to verify proof of possession of the client's private key, i.e., that the client is indeed in possession of the private key corresponding to the public key conveyed in the "req_cnf" parameter.</t>
      <t>The AS might have previously achieved proof of possession of the private key in question, e.g., from previous interactions with the client or through out-of-band means. Alternatively, a profile of ACE might define how the AS verifies a PoP evidence that the client computes and provides to the AS by means of a parameter included in the access token request (e.g., see <xref target="I-D.ietf-ace-group-oscore-profile"/>).</t>
      <t>Irrespective of the method used, if the AS fails to verify the proof of possession of the client's private key, then the AS <bcp14>MUST</bcp14> reject the access token request and <bcp14>MUST</bcp14> reply with an error response (see <xref section="5.8.3" sectionFormat="of" target="RFC9200"/>). The error response <bcp14>MUST</bcp14> have a response code equivalent to the CoAP code 4.00 (Bad Request) and <bcp14>MUST</bcp14> include the error code "failed_pop_verification". The error code and its CBOR abbreviation are registered in <xref target="iana-oauth-extensions-errors"/> and <xref target="iana-oauth-error-code-cbor-mappings"/>, respectively.</t>
    </section>
    <section anchor="sec-updated-error-responses">
      <name>Updated Payload Format of Error Responses</name>
      <t>This section deprecates the original payload format of error responses conveying an error code, when CBOR is used to encode message payloads in the ACE framework. That format is referred to, e.g., when defining the error responses of Sections <xref target="RFC9200" section="5.8.3" sectionFormat="bare"/> and <xref target="RFC9200" section="5.9.3" sectionFormat="bare"/> of <xref target="RFC9200"/>.</t>
      <t>Also, this section defines a new payload format that allows such error responses to convey an error code together with further error-specific information, according to the problem-details format specified in <xref target="RFC9290"/>.</t>
      <t>Such error responses <bcp14>MUST</bcp14> have Content-Format set to "application/concise-problem-details+cbor". The payload of these error responses <bcp14>MUST</bcp14> be a CBOR map specifying a Concise Problem Details data item (see <xref section="2" sectionFormat="of" target="RFC9290"/>). The CBOR map is formatted as follows:</t>
      <ul spacing="normal">
        <li>
          <t>It <bcp14>MUST</bcp14> include the Custom Problem Detail entry "ace-error" registered in <xref target="iana-problem-details"/> of this document.  </t>
          <t>
This entry is formatted as a CBOR map including only one field, namely "error-code". The map key for the "error-code" field is the CBOR integer with value 0. The value of the "error-code" field is a CBOR integer specifying the error code associated with the occurred error. This value is taken from the "CBOR Value" column of the "OAuth Error Code CBOR Mappings" registry <xref target="IANA.OAuth.Error.Code.CBOR.Mappings"/>.  </t>
          <t>
The "error-code" field conveys the same information that the original payload format conveys through the "error" parameter (see, e.g., Sections <xref target="RFC9200" section="5.8.3" sectionFormat="bare"/> and <xref target="RFC9200" section="5.9.3" sectionFormat="bare"/> of <xref target="RFC9200"/>).  </t>
          <t>
The CDDL notation <xref target="RFC8610"/> of the "ace-error" entry is given below.</t>
        </li>
      </ul>
      <sourcecode type="cddl"><![CDATA[
   ace-error = {
     &(error-code: 0) => int
   }
]]></sourcecode>
      <ul spacing="normal">
        <li>
          <t>It <bcp14>MAY</bcp14> include further Standard Problem Detail entries or Custom Problem Detail entries (see <xref target="RFC9290"/>). The following Standard Problem Detail entries are of particular relevance for the ACE framework.  </t>
          <ul spacing="normal">
            <li>
              <t>"detail" (map key -2): its value is a CBOR text string that specifies a human-readable diagnostic description of the occurred error (see <xref section="2" sectionFormat="of" target="RFC9290"/>).      </t>
              <t>
The diagnostic text is intended for software engineers as well as for device and network operators in order to aid in debugging and provide context for possible intervention. The diagnostic message <bcp14>SHOULD</bcp14> be logged by the sender of the error response. The "detail" entry is unlikely to be relevant in an unattended setup where human intervention is not expected.      </t>
              <t>
When the Standard Problem Detail entry "detail" is included, it conveys the same information that the original payload format conveys through the "error_description" parameter (see, e.g., Sections <xref target="RFC9200" section="5.8.3" sectionFormat="bare"/> and <xref target="RFC9200" section="5.9.3" sectionFormat="bare"/> of <xref target="RFC9200"/>).</t>
            </li>
            <li>
              <t>"instance" (map key -3): its value is a URI reference identifying the specific occurrence of the error (see <xref section="2" sectionFormat="of" target="RFC9290"/>).      </t>
              <t>
When the Standard Problem Detail entry "instance" is included, it conveys the same information that the original payload format conveys through the "error_uri" parameter (see, e.g., Sections <xref target="RFC9200" section="5.8.3" sectionFormat="bare"/> and <xref target="RFC9200" section="5.9.3" sectionFormat="bare"/> of <xref target="RFC9200"/>).</t>
            </li>
          </ul>
        </li>
      </ul>
      <t>An example of an error response using the problem-details format is shown in <xref target="fig-example-error-response"/>.</t>
      <figure anchor="fig-example-error-response">
        <name>Example of Error Response with Problem Details.</name>
        <artwork><![CDATA[
Header: Bad Request (Code=4.00)
Content-Format: 257 (application/concise-problem-details+cbor)
Payload:
{
  / title /  -1 : "Incompatible ACE profile",
  / detail / -2 : "The RS supports only the OSCORE profile",
    e'ace-error': {
      / error_code / 0: 8 / incompatible_ace_profiles /
    }
}
]]></artwork>
      </figure>
      <t>When the ACE framework is used with CBOR for encoding message payloads, the following applies:</t>
      <ul spacing="normal">
        <li>
          <t>It is <bcp14>RECOMMENDED</bcp14> that authorization servers, clients, and resource servers support the payload format defined in this section.</t>
        </li>
        <li>
          <t>Authorization servers, clients, and resource servers that support the payload format defined in this section <bcp14>MUST</bcp14> use it when composing an outgoing error response that conveys an error code.</t>
        </li>
      </ul>
    </section>
    <section anchor="sec-updated-requirements">
      <name>Updated Requirements on Profiles of ACE</name>
      <t><xref section="C" sectionFormat="of" target="RFC9200"/> compiles a list of requirements on the profiles of ACE. This document amends two of those requirements as follows.</t>
      <t>The text of the fifth requirement</t>
      <blockquote>
        <t>Specify the security protocol the client and RS must use to protect their communication (e.g., OSCORE or DTLS). This must provide encryption and integrity and replay protection (Section 5.8.4.3).</t>
      </blockquote>
      <t>is replaced by the following text:</t>
      <blockquote>
        <t>Specify the security protocol the client and RS must use to protect their communication (e.g., OSCORE or DTLS). In combination with the used communication protocol, this must provide encryption, integrity and replay protection, and a binding between requests and responses (Section 5.8.4.3 and Section 6.5).</t>
      </blockquote>
      <t>The text of the tenth requirement</t>
      <blockquote>
        <t>Specify the communication and security protocol for interactions between the client and AS. This must provide encryption, integrity protection, replay protection, and a binding between requests and responses (Sections 5 and 5.8).</t>
      </blockquote>
      <t>is replaced by the following text:</t>
      <blockquote>
        <t>Specify the communication and security protocol for interactions between the client and AS. The combined use of those protocols must provide encryption, integrity protection, replay protection, and a binding between requests and responses (Sections 5 and 5.8).</t>
      </blockquote>
      <t>At the time of writing, all the profiles of ACE that are published as RFC (i.e., <xref target="RFC9202"/><xref target="RFC9203"/><xref target="RFC9431"/>) already comply with the two updated requirements as formulated above.</t>
    </section>
    <section anchor="sec-ead-session-id">
      <name>EDHOC EAD Item for Transporting a Session Identifier</name>
      <t>The authenticated key exchange protocol Ephemeral Diffie-Hellman Over COSE (EDHOC) <xref target="RFC9528"/> defines the transport of additional External Authorization Data (EAD) within an optional EAD field of the EDHOC messages (see <xref section="3.8" sectionFormat="of" target="RFC9528"/>). An EAD field is composed of one or multiple EAD items, each of which specifies an identifying 'ead_label' encoded as a CBOR integer and an optional 'ead_value' encoded as a CBOR byte string.</t>
      <t>When using the EDHOC and OSCORE profile of ACE defined in <xref target="I-D.ietf-ace-edhoc-oscore-profile"/>, C and the RS run the EDHOC protocol to establish an OSCORE Security Context <xref target="RFC8613"/>, which is used to secure communications when C accesses protected resources at the RS, according to the authorization information indicated in an access token. Specifically, the access token is bound to C's authentication credential AUTH_CRED_C that C uses during the EDHOC session for authenticating itself to the RS.</t>
      <t>Per the EDHOC and OSCORE profile, the first access token of a token series is specified by C to the RS during an EDHOC session between the two peers. To this end, <xref section="4.1" sectionFormat="of" target="I-D.ietf-ace-edhoc-oscore-profile"/> defines the EAD item ACE-OAuth Access Token for specifying an access token by value in the EAD field of an EDHOC message from C to the RS.</t>
      <t>This section defines an alternative EAD item for specifying an access token by reference, through its associated EDHOC session identifier.</t>
      <t>The name of the EAD item is Session ID, for which the CDDL grammar is shown in <xref target="fig-ead-session-id"/>.</t>
      <figure anchor="fig-ead-session-id">
        <name>EDHOC EAD Item Session ID.</name>
        <sourcecode type="cddl"><![CDATA[
ead_session_id = (
  ead_label : e'ead_session_id_label',
  ead_value : session_id
)
session_id = bstr
]]></sourcecode>
      </figure>
      <t>In particular:</t>
      <ul spacing="normal">
        <li>
          <t>ead_label is the integer value TBD registered in <xref target="iana-edhoc-ead"/>.</t>
        </li>
        <li>
          <t>ead_value is a CBOR byte string equal to the value of the "session_id" field within the EDHOC_Information object specified by the "edhoc_info" parameter of the access token response from the AS, when issuing the first access token of a token series (see <xref section="3.3" sectionFormat="of" target="I-D.ietf-ace-edhoc-oscore-profile"/>).</t>
        </li>
      </ul>
      <t>Note to RFC Editor: Please replace TBD with the value registered for Session ID in <xref target="iana-edhoc-ead"/>, then delete this note.</t>
      <t>This EAD item is critical, i.e., it is used only with the negative value of its ead_label, indicating that the receiving RS must progress the protocol using the access token associated with the identifier specified in the ead_value and with the AUTH_CRED_C used in the EDHOC session, or else abort the EDHOC session (see <xref section="3.8" sectionFormat="of" target="RFC9528"/>)</t>
      <t>The EAD Item Session ID is useful in two circumstances:</t>
      <ul spacing="normal">
        <li>
          <t>When using the SDC workflow defined in <xref target="sec-workflow"/>, C can indicate to the AS that it does not want to receive the issued access token (i.e., the access token request specifies the "token_upload" parameter with value 0 or 1), in the case that the AS successfully uploads the access token to the RS (i.e., the access token response specifies the "token_upload" parameter with value 0 or 2).  </t>
          <t>
Even in such a case where C does not obtain the issued access token, C obtains the "session_id" associated with the access token and specified in the access token response. Consequently, C can still specify the access token by reference during the EDHOC session with the RS, by using the EAD item Session ID.</t>
        </li>
        <li>
          <t>After having completed an EDHOC session with the RS and while still storing a valid access token, C might choose to re-run EDHOC with the RS. For example, the EDHOC session or the derived OSCORE Security Context might have become invalid, or C receives unprotected error responses from the RS and determines that the RS has deleted the Security Context (e.g., due to memory limitations). As another example, C could want to update its current secure communication association with the RS by establishing a new OSCORE Security Context, specifically through a new EDHOC session to leverage the exchange of ephemeral keys.  </t>
          <t>
Even in such a case where C can specify the access token by value, it is possible for C to instead specify the access token by reference during the EDHOC session with the RS, by using the EAD item Session ID as a way to reduce communication overhead.</t>
        </li>
      </ul>
      <t>The EAD item Session ID is used only when uploading the first access token of a token series, but not for the dynamic update of access rights (see <xref section="4.6" sectionFormat="of" target="I-D.ietf-ace-edhoc-oscore-profile"/>).</t>
      <t>Analogously to the EAD item ACE-OAuth Access Token defined in <xref section="4.1" sectionFormat="of" target="I-D.ietf-ace-edhoc-oscore-profile"/> and consistent with what is defined in <xref section="4.2" sectionFormat="of" target="I-D.ietf-ace-edhoc-oscore-profile"/>, the EAD item Session ID is used to specify the access token by reference as follows:</t>
      <ul spacing="normal">
        <li>
          <t>If the EDHOC forward message flow is used (see <xref section="4.3" sectionFormat="of" target="I-D.ietf-ace-edhoc-oscore-profile"/>), the EAD item is included in the EAD_3 field of EDHOC message_3. As per <xref section="4.3.3" sectionFormat="of" target="I-D.ietf-ace-edhoc-oscore-profile"/>, the EAD_3 field must not include multiple EAD items specifying the access token.</t>
        </li>
        <li>
          <t>Instead, if the EDHOC reverse message flow is used (see <xref section="4.4" sectionFormat="of" target="I-D.ietf-ace-edhoc-oscore-profile"/>), the EAD item is included in the EAD_4 field of EDHOC message_4. As per <xref section="4.4.5" sectionFormat="of" target="I-D.ietf-ace-edhoc-oscore-profile"/>, the EAD_4 field must not include multiple EAD items specifying the access token.</t>
        </li>
      </ul>
      <t>A client or resource server <bcp14>MUST</bcp14> support the EAD item Session ID if it both supports the SDC workflow and implements the EDHOC and OSCORE profile of ACE.</t>
      <t>Consequently, C is ensured that RS supports the EAD item Session ID when C receives an access token response specifying the "token_upload" parameter with value 0 or 2, following the issue of an access token for accessing protected resources at the RS. Besides that, C can learn about RS' support for the EAD item through indications from the AS within the EDHOC_Information object specified by the "edhoc_info" parameter of the access token response, or by using other means such as, for example, those defined in <xref target="I-D.ietf-lake-app-profiles"/>.</t>
      <t>Example: assuming that ead_label is 2 and that the value of the "session_id" field within the EDHOC_Information object specified by the "edhoc_info" parameter of the access token response from the AS is equal to h'01fc', the critical EAD item is as follows:</t>
      <sourcecode type="cbor-diag"><![CDATA[
-2, h'01fc'
]]></sourcecode>
      <t>Note to RFC Editor: Please replace the value of the ead_label with the value registered for Session ID in <xref target="iana-edhoc-ead"/>, then delete this note.</t>
    </section>
    <section anchor="security-considerations">
      <name>Security Considerations</name>
      <t>The same security considerations from the ACE framework for Authentication and Authorization <xref target="RFC9200"/> apply to this document, together with those from the specific profile of ACE used.</t>
      <t>When using the problem-details format defined in <xref target="RFC9290"/> for error responses, then the privacy and security considerations from Sections <xref target="RFC9290" section="4" sectionFormat="bare"/> and <xref target="RFC9290" section="5" sectionFormat="bare"/> of <xref target="RFC9290"/> also apply.</t>
      <t>Editor's note: add more security considerations.</t>
    </section>
    <section anchor="iana-considerations">
      <name>IANA Considerations</name>
      <t>This document has the following actions for IANA.</t>
      <t>Note to RFC Editor: Please replace all occurrences of "[RFC-XXXX]" with the RFC number of this specification and delete this paragraph.</t>
      <section anchor="iana-oauth-params">
        <name>OAuth Parameters Registry</name>
        <t>IANA is asked to add the following entries to the "OAuth Parameters" registry <xref target="IANA.OAuth.Parameters"/> within the "OAuth Parameters" registry group.</t>
        <ul spacing="normal">
          <li>
            <t>Name: token_upload</t>
          </li>
          <li>
            <t>Parameter Usage Location: token request, token response</t>
          </li>
          <li>
            <t>Change Controller: IETF</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: token_hash</t>
          </li>
          <li>
            <t>Parameter Usage Location: token response</t>
          </li>
          <li>
            <t>Change Controller: IETF</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: to_rs</t>
          </li>
          <li>
            <t>Parameter Usage Location: token request</t>
          </li>
          <li>
            <t>Change Controller: IETF</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: from_rs</t>
          </li>
          <li>
            <t>Parameter Usage Location: token response</t>
          </li>
          <li>
            <t>Change Controller: IETF</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: rs_cnf2</t>
          </li>
          <li>
            <t>Parameter Usage Location: token response</t>
          </li>
          <li>
            <t>Change Controller: IETF</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: audience2</t>
          </li>
          <li>
            <t>Parameter Usage Location: token response</t>
          </li>
          <li>
            <t>Change Controller: IETF</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: anchor_cnf</t>
          </li>
          <li>
            <t>Parameter Usage Location: token response</t>
          </li>
          <li>
            <t>Change Controller: IETF</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: token_series_id</t>
          </li>
          <li>
            <t>Parameter Usage Location: token request, token response</t>
          </li>
          <li>
            <t>Change Controller: IETF</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: updated_rights</t>
          </li>
          <li>
            <t>Parameter Usage Location: as-rs request</t>
          </li>
          <li>
            <t>Change Controller: IETF</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <t>In the same registry, IANA is asked to update the entries for the following OAuth parameters identified by their name, so that the content of the "Parameter Usage Location" column and of the "Reference" column is as below:</t>
        <ul spacing="normal">
          <li>
            <t>access_token  </t>
            <ul spacing="normal">
              <li>
                <t>Parameter Usage Location: authorization response, token response, as-rs request</t>
              </li>
              <li>
                <t>Reference: [RFC6749][RFC-XXXX]</t>
              </li>
            </ul>
          </li>
          <li>
            <t>rs_cnf  </t>
            <ul spacing="normal">
              <li>
                <t>Parameter Usage Location: token request, token response</t>
              </li>
              <li>
                <t>Reference: [RFC9201, Section 5][RFC-XXXX, <xref target="sec-cred-rs-value"/>]</t>
              </li>
            </ul>
          </li>
          <li>
            <t>nonce1  </t>
            <ul spacing="normal">
              <li>
                <t>Parameter Usage Location: client-rs request, as-rs request</t>
              </li>
              <li>
                <t>Reference: [RFC9203][RFC-XXXX]</t>
              </li>
            </ul>
          </li>
          <li>
            <t>nonce2  </t>
            <ul spacing="normal">
              <li>
                <t>Parameter Usage Location: rs-client response, rs-as response</t>
              </li>
              <li>
                <t>Reference: [RFC9203][RFC-XXXX]</t>
              </li>
            </ul>
          </li>
          <li>
            <t>ace_client_recipientid  </t>
            <ul spacing="normal">
              <li>
                <t>Parameter Usage Location: client-rs request, as-rs request</t>
              </li>
              <li>
                <t>Reference: [RFC9203][RFC-XXXX]</t>
              </li>
            </ul>
          </li>
          <li>
            <t>ace_server_recipientid  </t>
            <ul spacing="normal">
              <li>
                <t>Parameter Usage Location: rs-client response, rs-as response</t>
              </li>
              <li>
                <t>Reference: [RFC9203][RFC-XXXX]</t>
              </li>
            </ul>
          </li>
          <li>
            <t>sign_info  </t>
            <ul spacing="normal">
              <li>
                <t>Parameter Usage Location: client-rs request, rs-client response, as-rs request, rs-as response</t>
              </li>
              <li>
                <t>Reference: [RFC9594][RFC-XXXX]</t>
              </li>
            </ul>
          </li>
          <li>
            <t>kdcchallenge  </t>
            <ul spacing="normal">
              <li>
                <t>Parameter Usage Location: rs-client response, rs-as response</t>
              </li>
              <li>
                <t>Reference: [RFC9594][RFC-XXXX]</t>
              </li>
            </ul>
          </li>
          <li>
            <t>ecdh_info  </t>
            <ul spacing="normal">
              <li>
                <t>Parameter Usage Location: client-rs request, rs-client response, as-rs request, rs-as response</t>
              </li>
              <li>
                <t>Reference: [RFC-ietf-ace-key-groupcomm-oscore-21][RFC-XXXX]</t>
              </li>
            </ul>
          </li>
          <li>
            <t>kdc_dh_creds  </t>
            <ul spacing="normal">
              <li>
                <t>Parameter Usage Location: client-rs request, rs-client response, as-rs request, rs-as response</t>
              </li>
              <li>
                <t>Reference: [RFC-ietf-ace-key-groupcomm-oscore-21][RFC-XXXX]</t>
              </li>
            </ul>
          </li>
        </ul>
        <t>Note to RFC Editor: In the last two entries above, please replace the occurrences of "RFC-ietf-ace-key-groupcomm-oscore-21" with the RFC number of that specification and delete this paragraph.</t>
      </section>
      <section anchor="iana-oauth-cbor-mappings">
        <name>OAuth Parameters CBOR Mappings Registry</name>
        <t>IANA is asked to add the following entries to the "OAuth Parameters CBOR Mappings" registry <xref target="IANA.OAuth.Parameters.CBOR.Mappings"/> within the "Authentication and Authorization for Constrained Environments (ACE)" registry group, following the procedure specified in <xref target="RFC9200"/>.</t>
        <ul spacing="normal">
          <li>
            <t>Name: token_upload</t>
          </li>
          <li>
            <t>CBOR Key: TBD (value between 1 and 255)</t>
          </li>
          <li>
            <t>Value Type: unsigned integer</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
          <li>
            <t>Original Specification: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: token_hash</t>
          </li>
          <li>
            <t>CBOR Key: TBD (value between 1 and 255)</t>
          </li>
          <li>
            <t>Value Type: unsigned integer</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
          <li>
            <t>Original Specification: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: to_rs</t>
          </li>
          <li>
            <t>CBOR Key: TBD (value between 1 and 255)</t>
          </li>
          <li>
            <t>Value Type: byte string or #6.&lt;uint&gt;(bstr)</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
          <li>
            <t>Original Specification: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: from_rs</t>
          </li>
          <li>
            <t>CBOR Key: TBD (value between 1 and 255)</t>
          </li>
          <li>
            <t>Value Type: byte string or #6.&lt;uint&gt;(bstr)</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
          <li>
            <t>Original Specification: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: rs_cnf2</t>
          </li>
          <li>
            <t>CBOR Key: TBD (value between 1 and 255)</t>
          </li>
          <li>
            <t>Value Type: array</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
          <li>
            <t>Original Specification: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: audience2</t>
          </li>
          <li>
            <t>CBOR Key: TBD (value between 1 and 255)</t>
          </li>
          <li>
            <t>Value Type: array</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
          <li>
            <t>Original Specification: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: anchor_cnf</t>
          </li>
          <li>
            <t>CBOR Key: TBD (value between 1 and 255)</t>
          </li>
          <li>
            <t>Value Type: array</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
          <li>
            <t>Original Specification: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: token_series_id</t>
          </li>
          <li>
            <t>CBOR Key: TBD (value between 1 and 255)</t>
          </li>
          <li>
            <t>Value Type: byte string</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
          <li>
            <t>Original Specification: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: updated_rights</t>
          </li>
          <li>
            <t>CBOR Key: TBD (value between 1 and 255)</t>
          </li>
          <li>
            <t>Value Type: True</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
          <li>
            <t>Original Specification: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <t>In the same registry, IANA is asked to update the entry for the OAuth parameter with name "rs_cnf", so that the content of the "Value Type" column and of the "Reference" column is as below:</t>
        <ul spacing="normal">
          <li>
            <t>Value Type: True or False or Null or map</t>
          </li>
          <li>
            <t>Reference: [RFC9201, Section 3.2][RFC-XXXX, <xref target="sec-cred-rs-value"/>]</t>
          </li>
        </ul>
      </section>
      <section anchor="iana-token-json-claims">
        <name>JSON Web Token Claims Registry</name>
        <t>IANA is asked to add the following entry to the "JSON Web Token Claims" registry <xref target="IANA.JSON.Web.Token.Claims"/> within the "JSON Web Token (JWT)" registry group, following the procedure specified in <xref target="RFC7519"/>.</t>
        <ul spacing="normal">
          <li>
            <t>Claim Name: token_series_id</t>
          </li>
          <li>
            <t>Claim Description: The identifier of a token series</t>
          </li>
          <li>
            <t>Change Controller: IETF</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
        </ul>
      </section>
      <section anchor="iana-token-cwt-claims">
        <name>CBOR Web Token (CWT) Claims Registry</name>
        <t>IANA is asked to add the following entry to the "CBOR Web Token (CWT) Claims" registry <xref target="IANA.CWT.Claims"/> within the "CBOR Web Token (CWT) Claims" registry group, following the procedure specified in <xref target="RFC8392"/>.</t>
        <ul spacing="normal">
          <li>
            <t>Claim Name: token_series_id</t>
          </li>
          <li>
            <t>Claim Description: The identifier of a token series</t>
          </li>
          <li>
            <t>JWT Claim Name: token_series_id</t>
          </li>
          <li>
            <t>Claim Key: TBD (value between 1 and 255)</t>
          </li>
          <li>
            <t>Claim Value Type: byte string</t>
          </li>
          <li>
            <t>Change Controller: IETF</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX, <xref target="sec-token_series_id"/>]</t>
          </li>
        </ul>
      </section>
      <section anchor="iana-oauth-extensions-errors">
        <name>OAuth Extensions Error Registry</name>
        <t>IANA is asked to add the following entries to the "OAuth Extensions Error Registry" <xref target="IANA.OAuth.Extensions.Error"/> within the "OAuth Parameters" registry group.</t>
        <ul spacing="normal">
          <li>
            <t>Name: missing_old_token</t>
          </li>
          <li>
            <t>Usage Location: authz-info error response</t>
          </li>
          <li>
            <t>Protocol Extension: [RFC-XXXX]</t>
          </li>
          <li>
            <t>Change Controller: IETF</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX, <xref target="sec-new-series-on-the-fly"/>]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: unknown_credential_referenced</t>
          </li>
          <li>
            <t>Usage Location: token error response</t>
          </li>
          <li>
            <t>Protocol Extension: [RFC-XXXX]</t>
          </li>
          <li>
            <t>Change Controller: IETF</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX, <xref target="sec-coord-exchanged-cred"/>]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: failed_pop_verification</t>
          </li>
          <li>
            <t>Usage Location: token error response</t>
          </li>
          <li>
            <t>Protocol Extension: [RFC-XXXX]</t>
          </li>
          <li>
            <t>Change Controller: IETF</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX, <xref target="sec-error-failed-pop"/>]</t>
          </li>
        </ul>
      </section>
      <section anchor="iana-oauth-error-code-cbor-mappings">
        <name>OAuth Error Code CBOR Mappings Registry</name>
        <t>IANA is asked to add the following entries to the "OAuth Error Code CBOR Mappings" registry <xref target="IANA.OAuth.Error.Code.CBOR.Mappings"/> within the "Authentication and Authorization for Constrained Environments (ACE)" registry group.</t>
        <ul spacing="normal">
          <li>
            <t>Name: missing_old_token</t>
          </li>
          <li>
            <t>CBOR Value: TBD (value between 1 and 255)</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
          <li>
            <t>Original Specification: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: unknown_credential_referenced</t>
          </li>
          <li>
            <t>CBOR Value: TBD (value between 1 and 255)</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
          <li>
            <t>Original Specification: [RFC-XXXX]</t>
          </li>
        </ul>
        <t><br/></t>
        <ul spacing="normal">
          <li>
            <t>Name: failed_pop_verification</t>
          </li>
          <li>
            <t>CBOR Value: TBD (value between 1 and 255)</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX]</t>
          </li>
          <li>
            <t>Original Specification: [RFC-XXXX]</t>
          </li>
        </ul>
      </section>
      <section anchor="iana-problem-details">
        <name>Custom Problem Detail Keys Registry</name>
        <t>IANA is asked to register the following entry in the "Custom Problem Detail Keys" registry <xref target="IANA.Custom.Problem.Detail.Keys"/> within the "Constrained RESTful Environments (CoRE) Parameters" registry group.</t>
        <ul spacing="normal">
          <li>
            <t>Key Value: TBD (value between 0 and 23)</t>
          </li>
          <li>
            <t>Name: ace-error</t>
          </li>
          <li>
            <t>Brief Description: Carry ACE <xref target="RFC9200"/> problem details in a Concise Problem Details data item.</t>
          </li>
          <li>
            <t>Change Controller: IETF</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX, <xref target="sec-updated-error-responses"/>]</t>
          </li>
        </ul>
      </section>
      <section anchor="iana-edhoc-ead">
        <name>EDHOC External Authorization Data Registry</name>
        <t>IANA is asked to add the following entry to the "EDHOC External Authorization Data" registry <xref target="IANA.EDHOC.External.Authorization.Data"/> within the "Ephemeral Diffie-Hellman Over COSE (EDHOC)" registry group.</t>
        <ul spacing="normal">
          <li>
            <t>Name: Session ID</t>
          </li>
          <li>
            <t>Label: TBD (value between 1 and 23)</t>
          </li>
          <li>
            <t>Description: The identifier of an EDHOC session</t>
          </li>
          <li>
            <t>Reference: [RFC-XXXX], <xref target="sec-ead-session-id"/></t>
          </li>
        </ul>
      </section>
    </section>
  </middle>
  <back>
    <references anchor="sec-combined-references">
      <name>References</name>
      <references anchor="sec-normative-references">
        <name>Normative References</name>
        <reference anchor="RFC3629">
          <front>
            <title>UTF-8, a transformation format of ISO 10646</title>
            <author fullname="F. Yergeau" initials="F." surname="Yergeau"/>
            <date month="November" year="2003"/>
            <abstract>
              <t>ISO/IEC 10646-1 defines a large character set called the Universal Character Set (UCS) which encompasses most of the world's writing systems. The originally proposed encodings of the UCS, however, were not compatible with many current applications and protocols, and this has led to the development of UTF-8, the object of this memo. UTF-8 has the characteristic of preserving the full US-ASCII range, providing compatibility with file systems, parsers and other software that rely on US-ASCII values but are transparent to other values. This memo obsoletes and replaces RFC 2279.</t>
            </abstract>
          </front>
          <seriesInfo name="STD" value="63"/>
          <seriesInfo name="RFC" value="3629"/>
          <seriesInfo name="DOI" value="10.17487/RFC3629"/>
        </reference>
        <reference anchor="RFC4648">
          <front>
            <title>The Base16, Base32, and Base64 Data Encodings</title>
            <author fullname="S. Josefsson" initials="S." surname="Josefsson"/>
            <date month="October" year="2006"/>
            <abstract>
              <t>This document describes the commonly used base 64, base 32, and base 16 encoding schemes. It also discusses the use of line-feeds in encoded data, use of padding in encoded data, use of non-alphabet characters in encoded data, use of different encoding alphabets, and canonical encodings. [STANDARDS-TRACK]</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="4648"/>
          <seriesInfo name="DOI" value="10.17487/RFC4648"/>
        </reference>
        <reference anchor="RFC5280">
          <front>
            <title>Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile</title>
            <author fullname="D. Cooper" initials="D." surname="Cooper"/>
            <author fullname="S. Santesson" initials="S." surname="Santesson"/>
            <author fullname="S. Farrell" initials="S." surname="Farrell"/>
            <author fullname="S. Boeyen" initials="S." surname="Boeyen"/>
            <author fullname="R. Housley" initials="R." surname="Housley"/>
            <author fullname="W. Polk" initials="W." surname="Polk"/>
            <date month="May" year="2008"/>
            <abstract>
              <t>This memo profiles the X.509 v3 certificate and X.509 v2 certificate revocation list (CRL) for use in the Internet. An overview of this approach and model is provided as an introduction. The X.509 v3 certificate format is described in detail, with additional information regarding the format and semantics of Internet name forms. Standard certificate extensions are described and two Internet-specific extensions are defined. A set of required certificate extensions is specified. The X.509 v2 CRL format is described in detail along with standard and Internet-specific extensions. An algorithm for X.509 certification path validation is described. An ASN.1 module and examples are provided in the appendices. [STANDARDS-TRACK]</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="5280"/>
          <seriesInfo name="DOI" value="10.17487/RFC5280"/>
        </reference>
        <reference anchor="RFC6749">
          <front>
            <title>The OAuth 2.0 Authorization Framework</title>
            <author fullname="D. Hardt" initials="D." role="editor" surname="Hardt"/>
            <date month="October" year="2012"/>
            <abstract>
              <t>The OAuth 2.0 authorization framework enables a third-party application to obtain limited access to an HTTP service, either on behalf of a resource owner by orchestrating an approval interaction between the resource owner and the HTTP service, or by allowing the third-party application to obtain access on its own behalf. This specification replaces and obsoletes the OAuth 1.0 protocol described in RFC 5849. [STANDARDS-TRACK]</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="6749"/>
          <seriesInfo name="DOI" value="10.17487/RFC6749"/>
        </reference>
        <reference anchor="RFC6920">
          <front>
            <title>Naming Things with Hashes</title>
            <author fullname="S. Farrell" initials="S." surname="Farrell"/>
            <author fullname="D. Kutscher" initials="D." surname="Kutscher"/>
            <author fullname="C. Dannewitz" initials="C." surname="Dannewitz"/>
            <author fullname="B. Ohlman" initials="B." surname="Ohlman"/>
            <author fullname="A. Keranen" initials="A." surname="Keranen"/>
            <author fullname="P. Hallam-Baker" initials="P." surname="Hallam-Baker"/>
            <date month="April" year="2013"/>
            <abstract>
              <t>This document defines a set of ways to identify a thing (a digital object in this case) using the output from a hash function. It specifies a new URI scheme for this purpose, a way to map these to HTTP URLs, and binary and human-speakable formats for these names. The various formats are designed to support, but not require, a strong link to the referenced object, such that the referenced object may be authenticated to the same degree as the reference to it. The reason for this work is to standardise current uses of hash outputs in URLs and to support new information-centric applications and other uses of hash outputs in protocols.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="6920"/>
          <seriesInfo name="DOI" value="10.17487/RFC6920"/>
        </reference>
        <reference anchor="RFC7252">
          <front>
            <title>The Constrained Application Protocol (CoAP)</title>
            <author fullname="Z. Shelby" initials="Z." surname="Shelby"/>
            <author fullname="K. Hartke" initials="K." surname="Hartke"/>
            <author fullname="C. Bormann" initials="C." surname="Bormann"/>
            <date month="June" year="2014"/>
            <abstract>
              <t>The Constrained Application Protocol (CoAP) is a specialized web transfer protocol for use with constrained nodes and constrained (e.g., low-power, lossy) networks. The nodes often have 8-bit microcontrollers with small amounts of ROM and RAM, while constrained networks such as IPv6 over Low-Power Wireless Personal Area Networks (6LoWPANs) often have high packet error rates and a typical throughput of 10s of kbit/s. The protocol is designed for machine- to-machine (M2M) applications such as smart energy and building automation.</t>
              <t>CoAP provides a request/response interaction model between application endpoints, supports built-in discovery of services and resources, and includes key concepts of the Web such as URIs and Internet media types. CoAP is designed to easily interface with HTTP for integration with the Web while meeting specialized requirements such as multicast support, very low overhead, and simplicity for constrained environments.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="7252"/>
          <seriesInfo name="DOI" value="10.17487/RFC7252"/>
        </reference>
        <reference anchor="RFC7519">
          <front>
            <title>JSON Web Token (JWT)</title>
            <author fullname="M. Jones" initials="M." surname="Jones"/>
            <author fullname="J. Bradley" initials="J." surname="Bradley"/>
            <author fullname="N. Sakimura" initials="N." surname="Sakimura"/>
            <date month="May" year="2015"/>
            <abstract>
              <t>JSON Web Token (JWT) is a compact, URL-safe means of representing claims to be transferred between two parties. The claims in a JWT are encoded as a JSON object that is used as the payload of a JSON Web Signature (JWS) structure or as the plaintext of a JSON Web Encryption (JWE) structure, enabling the claims to be digitally signed or integrity protected with a Message Authentication Code (MAC) and/or encrypted.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="7519"/>
          <seriesInfo name="DOI" value="10.17487/RFC7519"/>
        </reference>
        <reference anchor="RFC7800">
          <front>
            <title>Proof-of-Possession Key Semantics for JSON Web Tokens (JWTs)</title>
            <author fullname="M. Jones" initials="M." surname="Jones"/>
            <author fullname="J. Bradley" initials="J." surname="Bradley"/>
            <author fullname="H. Tschofenig" initials="H." surname="Tschofenig"/>
            <date month="April" year="2016"/>
            <abstract>
              <t>This specification describes how to declare in a JSON Web Token (JWT) that the presenter of the JWT possesses a particular proof-of- possession key and how the recipient can cryptographically confirm proof of possession of the key by the presenter. Being able to prove possession of a key is also sometimes described as the presenter being a holder-of-key.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="7800"/>
          <seriesInfo name="DOI" value="10.17487/RFC7800"/>
        </reference>
        <reference anchor="RFC8259">
          <front>
            <title>The JavaScript Object Notation (JSON) Data Interchange Format</title>
            <author fullname="T. Bray" initials="T." role="editor" surname="Bray"/>
            <date month="December" year="2017"/>
            <abstract>
              <t>JavaScript Object Notation (JSON) is a lightweight, text-based, language-independent data interchange format. It was derived from the ECMAScript Programming Language Standard. JSON defines a small set of formatting rules for the portable representation of structured data.</t>
              <t>This document removes inconsistencies with other specifications of JSON, repairs specification errors, and offers experience-based interoperability guidance.</t>
            </abstract>
          </front>
          <seriesInfo name="STD" value="90"/>
          <seriesInfo name="RFC" value="8259"/>
          <seriesInfo name="DOI" value="10.17487/RFC8259"/>
        </reference>
        <reference anchor="RFC8392">
          <front>
            <title>CBOR Web Token (CWT)</title>
            <author fullname="M. Jones" initials="M." surname="Jones"/>
            <author fullname="E. Wahlstroem" initials="E." surname="Wahlstroem"/>
            <author fullname="S. Erdtman" initials="S." surname="Erdtman"/>
            <author fullname="H. Tschofenig" initials="H." surname="Tschofenig"/>
            <date month="May" year="2018"/>
            <abstract>
              <t>CBOR Web Token (CWT) is a compact means of representing claims to be transferred between two parties. The claims in a CWT are encoded in the Concise Binary Object Representation (CBOR), and CBOR Object Signing and Encryption (COSE) is used for added application-layer security protection. A claim is a piece of information asserted about a subject and is represented as a name/value pair consisting of a claim name and a claim value. CWT is derived from JSON Web Token (JWT) but uses CBOR rather than JSON.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="8392"/>
          <seriesInfo name="DOI" value="10.17487/RFC8392"/>
        </reference>
        <reference anchor="RFC8446">
          <front>
            <title>The Transport Layer Security (TLS) Protocol Version 1.3</title>
            <author fullname="E. Rescorla" initials="E." surname="Rescorla"/>
            <date month="August" year="2018"/>
            <abstract>
              <t>This document specifies version 1.3 of the Transport Layer Security (TLS) protocol. TLS allows client/server applications to communicate over the Internet in a way that is designed to prevent eavesdropping, tampering, and message forgery.</t>
              <t>This document updates RFCs 5705 and 6066, and obsoletes RFCs 5077, 5246, and 6961. This document also specifies new requirements for TLS 1.2 implementations.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="8446"/>
          <seriesInfo name="DOI" value="10.17487/RFC8446"/>
        </reference>
        <reference anchor="RFC8610">
          <front>
            <title>Concise Data Definition Language (CDDL): A Notational Convention to Express Concise Binary Object Representation (CBOR) and JSON Data Structures</title>
            <author fullname="H. Birkholz" initials="H." surname="Birkholz"/>
            <author fullname="C. Vigano" initials="C." surname="Vigano"/>
            <author fullname="C. Bormann" initials="C." surname="Bormann"/>
            <date month="June" year="2019"/>
            <abstract>
              <t>This document proposes a notational convention to express Concise Binary Object Representation (CBOR) data structures (RFC 7049). Its main goal is to provide an easy and unambiguous way to express structures for protocol messages and data formats that use CBOR or JSON.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="8610"/>
          <seriesInfo name="DOI" value="10.17487/RFC8610"/>
        </reference>
        <reference anchor="RFC8747">
          <front>
            <title>Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs)</title>
            <author fullname="M. Jones" initials="M." surname="Jones"/>
            <author fullname="L. Seitz" initials="L." surname="Seitz"/>
            <author fullname="G. Selander" initials="G." surname="Selander"/>
            <author fullname="S. Erdtman" initials="S." surname="Erdtman"/>
            <author fullname="H. Tschofenig" initials="H." surname="Tschofenig"/>
            <date month="March" year="2020"/>
            <abstract>
              <t>This specification describes how to declare in a CBOR Web Token (CWT) (which is defined by RFC 8392) that the presenter of the CWT possesses a particular proof-of-possession key. Being able to prove possession of a key is also sometimes described as being the holder-of-key. This specification provides equivalent functionality to "Proof-of-Possession Key Semantics for JSON Web Tokens (JWTs)" (RFC 7800) but using Concise Binary Object Representation (CBOR) and CWTs rather than JavaScript Object Notation (JSON) and JSON Web Tokens (JWTs).</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="8747"/>
          <seriesInfo name="DOI" value="10.17487/RFC8747"/>
        </reference>
        <reference anchor="RFC8949">
          <front>
            <title>Concise Binary Object Representation (CBOR)</title>
            <author fullname="C. Bormann" initials="C." surname="Bormann"/>
            <author fullname="P. Hoffman" initials="P." surname="Hoffman"/>
            <date month="December" year="2020"/>
            <abstract>
              <t>The Concise Binary Object Representation (CBOR) is a data format whose design goals include the possibility of extremely small code size, fairly small message size, and extensibility without the need for version negotiation. These design goals make it different from earlier binary serializations such as ASN.1 and MessagePack.</t>
              <t>This document obsoletes RFC 7049, providing editorial improvements, new details, and errata fixes while keeping full compatibility with the interchange format of RFC 7049. It does not create a new version of the format.</t>
            </abstract>
          </front>
          <seriesInfo name="STD" value="94"/>
          <seriesInfo name="RFC" value="8949"/>
          <seriesInfo name="DOI" value="10.17487/RFC8949"/>
        </reference>
        <reference anchor="RFC9052">
          <front>
            <title>CBOR Object Signing and Encryption (COSE): Structures and Process</title>
            <author fullname="J. Schaad" initials="J." surname="Schaad"/>
            <date month="August" year="2022"/>
            <abstract>
              <t>Concise Binary Object Representation (CBOR) is a data format designed for small code size and small message size. There is a need to be able to define basic security services for this data format. This document defines the CBOR Object Signing and Encryption (COSE) protocol. This specification describes how to create and process signatures, message authentication codes, and encryption using CBOR for serialization. This specification additionally describes how to represent cryptographic keys using CBOR.</t>
              <t>This document, along with RFC 9053, obsoletes RFC 8152.</t>
            </abstract>
          </front>
          <seriesInfo name="STD" value="96"/>
          <seriesInfo name="RFC" value="9052"/>
          <seriesInfo name="DOI" value="10.17487/RFC9052"/>
        </reference>
        <reference anchor="RFC9053">
          <front>
            <title>CBOR Object Signing and Encryption (COSE): Initial Algorithms</title>
            <author fullname="J. Schaad" initials="J." surname="Schaad"/>
            <date month="August" year="2022"/>
            <abstract>
              <t>Concise Binary Object Representation (CBOR) is a data format designed for small code size and small message size. There is a need to be able to define basic security services for this data format. This document defines a set of algorithms that can be used with the CBOR Object Signing and Encryption (COSE) protocol (RFC 9052).</t>
              <t>This document, along with RFC 9052, obsoletes RFC 8152.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9053"/>
          <seriesInfo name="DOI" value="10.17487/RFC9053"/>
        </reference>
        <reference anchor="RFC9200">
          <front>
            <title>Authentication and Authorization for Constrained Environments Using the OAuth 2.0 Framework (ACE-OAuth)</title>
            <author fullname="L. Seitz" initials="L." surname="Seitz"/>
            <author fullname="G. Selander" initials="G." surname="Selander"/>
            <author fullname="E. Wahlstroem" initials="E." surname="Wahlstroem"/>
            <author fullname="S. Erdtman" initials="S." surname="Erdtman"/>
            <author fullname="H. Tschofenig" initials="H." surname="Tschofenig"/>
            <date month="August" year="2022"/>
            <abstract>
              <t>This specification defines a framework for authentication and authorization in Internet of Things (IoT) environments called ACE-OAuth. The framework is based on a set of building blocks including OAuth 2.0 and the Constrained Application Protocol (CoAP), thus transforming a well-known and widely used authorization solution into a form suitable for IoT devices. Existing specifications are used where possible, but extensions are added and profiles are defined to better serve the IoT use cases.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9200"/>
          <seriesInfo name="DOI" value="10.17487/RFC9200"/>
        </reference>
        <reference anchor="RFC9201">
          <front>
            <title>Additional OAuth Parameters for Authentication and Authorization for Constrained Environments (ACE)</title>
            <author fullname="L. Seitz" initials="L." surname="Seitz"/>
            <date month="August" year="2022"/>
            <abstract>
              <t>This specification defines new parameters and encodings for the OAuth 2.0 token and introspection endpoints when used with the framework for Authentication and Authorization for Constrained Environments (ACE). These are used to express the proof-of-possession (PoP) key the client wishes to use, the PoP key that the authorization server has selected, and the PoP key the resource server uses to authenticate to the client.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9201"/>
          <seriesInfo name="DOI" value="10.17487/RFC9201"/>
        </reference>
        <reference anchor="RFC9202">
          <front>
            <title>Datagram Transport Layer Security (DTLS) Profile for Authentication and Authorization for Constrained Environments (ACE)</title>
            <author fullname="S. Gerdes" initials="S." surname="Gerdes"/>
            <author fullname="O. Bergmann" initials="O." surname="Bergmann"/>
            <author fullname="C. Bormann" initials="C." surname="Bormann"/>
            <author fullname="G. Selander" initials="G." surname="Selander"/>
            <author fullname="L. Seitz" initials="L." surname="Seitz"/>
            <date month="August" year="2022"/>
            <abstract>
              <t>This specification defines a profile of the Authentication and Authorization for Constrained Environments (ACE) framework that allows constrained servers to delegate client authentication and authorization. The protocol relies on DTLS version 1.2 or later for communication security between entities in a constrained network using either raw public keys or pre-shared keys. A resource-constrained server can use this protocol to delegate management of authorization information to a trusted host with less-severe limitations regarding processing power and memory.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9202"/>
          <seriesInfo name="DOI" value="10.17487/RFC9202"/>
        </reference>
        <reference anchor="RFC9203">
          <front>
            <title>The Object Security for Constrained RESTful Environments (OSCORE) Profile of the Authentication and Authorization for Constrained Environments (ACE) Framework</title>
            <author fullname="F. Palombini" initials="F." surname="Palombini"/>
            <author fullname="L. Seitz" initials="L." surname="Seitz"/>
            <author fullname="G. Selander" initials="G." surname="Selander"/>
            <author fullname="M. Gunnarsson" initials="M." surname="Gunnarsson"/>
            <date month="August" year="2022"/>
            <abstract>
              <t>This document specifies a profile for the Authentication and Authorization for Constrained Environments (ACE) framework. It utilizes Object Security for Constrained RESTful Environments (OSCORE) to provide communication security and proof-of-possession for a key owned by the client and bound to an OAuth 2.0 access token.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9203"/>
          <seriesInfo name="DOI" value="10.17487/RFC9203"/>
        </reference>
        <reference anchor="RFC9277">
          <front>
            <title>On Stable Storage for Items in Concise Binary Object Representation (CBOR)</title>
            <author fullname="M. Richardson" initials="M." surname="Richardson"/>
            <author fullname="C. Bormann" initials="C." surname="Bormann"/>
            <date month="August" year="2022"/>
            <abstract>
              <t>This document defines a stored ("file") format for Concise Binary Object Representation (CBOR) data items that is friendly to common systems that recognize file types, such as the Unix file(1) command.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9277"/>
          <seriesInfo name="DOI" value="10.17487/RFC9277"/>
        </reference>
        <reference anchor="RFC9290">
          <front>
            <title>Concise Problem Details for Constrained Application Protocol (CoAP) APIs</title>
            <author fullname="T. Fossati" initials="T." surname="Fossati"/>
            <author fullname="C. Bormann" initials="C." surname="Bormann"/>
            <date month="October" year="2022"/>
            <abstract>
              <t>This document defines a concise "problem detail" as a way to carry machine-readable details of errors in a Representational State Transfer (REST) response to avoid the need to define new error response formats for REST APIs for constrained environments. The format is inspired by, but intended to be more concise than, the problem details for HTTP APIs defined in RFC 7807.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9290"/>
          <seriesInfo name="DOI" value="10.17487/RFC9290"/>
        </reference>
        <reference anchor="RFC9430">
          <front>
            <title>Extension of the Datagram Transport Layer Security (DTLS) Profile for Authentication and Authorization for Constrained Environments (ACE) to Transport Layer Security (TLS)</title>
            <author fullname="O. Bergmann" initials="O." surname="Bergmann"/>
            <author fullname="J. Preuß Mattsson" initials="J." surname="Preuß Mattsson"/>
            <author fullname="G. Selander" initials="G." surname="Selander"/>
            <date month="July" year="2023"/>
            <abstract>
              <t>This document updates "Datagram Transport Layer Security (DTLS) Profile for Authentication and Authorization for Constrained Environments (ACE)" (RFC 9202) by specifying that the profile applies to TLS as well as DTLS.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9430"/>
          <seriesInfo name="DOI" value="10.17487/RFC9430"/>
        </reference>
        <reference anchor="RFC9431">
          <front>
            <title>Message Queuing Telemetry Transport (MQTT) and Transport Layer Security (TLS) Profile of Authentication and Authorization for Constrained Environments (ACE) Framework</title>
            <author fullname="C. Sengul" initials="C." surname="Sengul"/>
            <author fullname="A. Kirby" initials="A." surname="Kirby"/>
            <date month="July" year="2023"/>
            <abstract>
              <t>This document specifies a profile for the Authentication and Authorization for Constrained Environments (ACE) framework to enable authorization in a publish-subscribe messaging system based on Message Queuing Telemetry Transport (MQTT). Proof-of-Possession keys, bound to OAuth 2.0 access tokens, are used to authenticate and authorize MQTT Clients. The protocol relies on TLS for confidentiality and MQTT server (Broker) authentication.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9431"/>
          <seriesInfo name="DOI" value="10.17487/RFC9431"/>
        </reference>
        <reference anchor="RFC9528">
          <front>
            <title>Ephemeral Diffie-Hellman Over COSE (EDHOC)</title>
            <author fullname="G. Selander" initials="G." surname="Selander"/>
            <author fullname="J. Preuß Mattsson" initials="J." surname="Preuß Mattsson"/>
            <author fullname="F. Palombini" initials="F." surname="Palombini"/>
            <date month="March" year="2024"/>
            <abstract>
              <t>This document specifies Ephemeral Diffie-Hellman Over COSE (EDHOC), a very compact and lightweight authenticated Diffie-Hellman key exchange with ephemeral keys. EDHOC provides mutual authentication, forward secrecy, and identity protection. EDHOC is intended for usage in constrained scenarios, and a main use case is to establish an Object Security for Constrained RESTful Environments (OSCORE) security context. By reusing CBOR Object Signing and Encryption (COSE) for cryptography, Concise Binary Object Representation (CBOR) for encoding, and Constrained Application Protocol (CoAP) for transport, the additional code size can be kept very low.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9528"/>
          <seriesInfo name="DOI" value="10.17487/RFC9528"/>
        </reference>
        <reference anchor="RFC9770">
          <front>
            <title>Notification of Revoked Access Tokens in the Authentication and Authorization for Constrained Environments (ACE) Framework</title>
            <author fullname="M. Tiloca" initials="M." surname="Tiloca"/>
            <author fullname="F. Palombini" initials="F." surname="Palombini"/>
            <author fullname="S. Echeverria" initials="S." surname="Echeverria"/>
            <author fullname="G. Lewis" initials="G." surname="Lewis"/>
            <date month="June" year="2025"/>
            <abstract>
              <t>This document specifies a method of the Authentication and Authorization for Constrained Environments (ACE) framework, which allows an authorization server to notify clients and resource servers (i.e., registered devices) about revoked access tokens. As specified in this document, the method allows clients and resource servers (RSs) to access a Token Revocation List (TRL) on the authorization server by using the Constrained Application Protocol (CoAP), with the possible additional use of resource observation. Resulting (unsolicited) notifications of revoked access tokens complement alternative approaches such as token introspection, while not requiring additional endpoints on clients and RSs.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9770"/>
          <seriesInfo name="DOI" value="10.17487/RFC9770"/>
        </reference>
        <reference anchor="I-D.ietf-ace-edhoc-oscore-profile">
          <front>
            <title>Ephemeral Diffie-Hellman Over COSE (EDHOC) and Object Security for Constrained Environments (OSCORE) Profile for Authentication and Authorization for Constrained Environments (ACE)</title>
            <author fullname="Göran Selander" initials="G." surname="Selander">
              <organization>Ericsson</organization>
            </author>
            <author fullname="John Preuß Mattsson" initials="J. P." surname="Mattsson">
              <organization>Ericsson</organization>
            </author>
            <author fullname="Marco Tiloca" initials="M." surname="Tiloca">
              <organization>RISE</organization>
            </author>
            <author fullname="Rikard Höglund" initials="R." surname="Höglund">
              <organization>RISE</organization>
            </author>
            <date day="1" month="March" year="2026"/>
            <abstract>
              <t>   This document specifies a profile for the Authentication and
   Authorization for Constrained Environments (ACE) framework.  It
   utilizes Ephemeral Diffie-Hellman Over COSE (EDHOC) for achieving
   mutual authentication between an ACE-OAuth client and resource
   server, and it binds an authentication credential of the client to an
   ACE-OAuth access token.  EDHOC also establishes an Object Security
   for Constrained RESTful Environments (OSCORE) Security Context, which
   is used to secure communications between the client and resource
   server when accessing protected resources according to the
   authorization information indicated in the access token.  This
   profile can be used to delegate management of authorization
   information from a resource-constrained server to a trusted host with
   less severe limitations regarding processing power and memory.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-ietf-ace-edhoc-oscore-profile-10"/>
        </reference>
        <reference anchor="IANA.OAuth.Parameters.CBOR.Mappings" target="https://www.iana.org/assignments/ace/ace.xhtml#oauth-parameters-cbor-mappings">
          <front>
            <title>OAuth Parameters CBOR Mappings</title>
            <author>
              <organization>IANA</organization>
            </author>
            <date/>
          </front>
        </reference>
        <reference anchor="IANA.JSON.Web.Token.Claims" target="https://www.iana.org/assignments/jwt/jwt.xhtml#claims">
          <front>
            <title>JSON Web Token Claims</title>
            <author>
              <organization>IANA</organization>
            </author>
            <date/>
          </front>
        </reference>
        <reference anchor="IANA.CWT.Claims" target="https://www.iana.org/assignments/cwt/cwt.xhtml#claims-registry">
          <front>
            <title>CBOR Web Token (CWT) Claims</title>
            <author>
              <organization>IANA</organization>
            </author>
            <date/>
          </front>
        </reference>
        <reference anchor="IANA.OAuth.Extensions.Error" target="https://www.iana.org/assignments/oauth-parameters/oauth-parameters.xhtml#extensions-error">
          <front>
            <title>OAuth Extensions Error Registry</title>
            <author>
              <organization>IANA</organization>
            </author>
            <date/>
          </front>
        </reference>
        <reference anchor="IANA.OAuth.Error.Code.CBOR.Mappings" target="https://www.iana.org/assignments/ace/ace.xhtml#oauth-error-code-cbor-mappings">
          <front>
            <title>OAuth Error Code CBOR Mappings</title>
            <author>
              <organization>IANA</organization>
            </author>
            <date/>
          </front>
        </reference>
        <reference anchor="IANA.Custom.Problem.Detail.Keys" target="https://www.iana.org/assignments/core-parameters/core-parameters.xhtml#core-custom-problem-detail-keys">
          <front>
            <title>Custom Problem Detail Keys</title>
            <author>
              <organization>IANA</organization>
            </author>
            <date/>
          </front>
        </reference>
        <reference anchor="IANA.Hash.Algorithms" target="https://www.iana.org/assignments/named-information/named-information.xhtml#hash-alg">
          <front>
            <title>Named Information Hash Algorithm Registry</title>
            <author>
              <organization>IANA</organization>
            </author>
            <date/>
          </front>
        </reference>
        <reference anchor="IANA.OAuth.Parameters" target="https://www.iana.org/assignments/oauth-parameters/oauth-parameters.xhtml#parameters">
          <front>
            <title>OAuth Parameters</title>
            <author>
              <organization>IANA</organization>
            </author>
            <date/>
          </front>
        </reference>
        <reference anchor="IANA.EDHOC.External.Authorization.Data" target="https://www.iana.org/assignments/edhoc/edhoc.xhtml#edhoc-ead">
          <front>
            <title>EDHOC External Authorization Data</title>
            <author>
              <organization>IANA</organization>
            </author>
            <date/>
          </front>
        </reference>
        <reference anchor="SHA-256" target="https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf">
          <front>
            <title>Secure Hash Standard</title>
            <author>
              <organization>NIST</organization>
            </author>
            <date year="2015" month="August"/>
          </front>
          <seriesInfo name="NIST FIPS PUB 180-4, DOI 10.6028/NIST.FIPS.180-4" value=""/>
        </reference>
        <reference anchor="RFC2119">
          <front>
            <title>Key words for use in RFCs to Indicate Requirement Levels</title>
            <author fullname="S. Bradner" initials="S." surname="Bradner"/>
            <date month="March" year="1997"/>
            <abstract>
              <t>In many standards track documents several words are used to signify the requirements in the specification. These words are often capitalized. This document defines these words as they should be interpreted in IETF documents. This document specifies an Internet Best Current Practices for the Internet Community, and requests discussion and suggestions for improvements.</t>
            </abstract>
          </front>
          <seriesInfo name="BCP" value="14"/>
          <seriesInfo name="RFC" value="2119"/>
          <seriesInfo name="DOI" value="10.17487/RFC2119"/>
        </reference>
        <reference anchor="RFC8174">
          <front>
            <title>Ambiguity of Uppercase vs Lowercase in RFC 2119 Key Words</title>
            <author fullname="B. Leiba" initials="B." surname="Leiba"/>
            <date month="May" year="2017"/>
            <abstract>
              <t>RFC 2119 specifies common key words that may be used in protocol specifications. This document aims to reduce the ambiguity by clarifying that only UPPERCASE usage of the key words have the defined special meanings.</t>
            </abstract>
          </front>
          <seriesInfo name="BCP" value="14"/>
          <seriesInfo name="RFC" value="8174"/>
          <seriesInfo name="DOI" value="10.17487/RFC8174"/>
        </reference>
      </references>
      <references anchor="sec-informative-references">
        <name>Informative References</name>
        <reference anchor="RFC8613">
          <front>
            <title>Object Security for Constrained RESTful Environments (OSCORE)</title>
            <author fullname="G. Selander" initials="G." surname="Selander"/>
            <author fullname="J. Mattsson" initials="J." surname="Mattsson"/>
            <author fullname="F. Palombini" initials="F." surname="Palombini"/>
            <author fullname="L. Seitz" initials="L." surname="Seitz"/>
            <date month="July" year="2019"/>
            <abstract>
              <t>This document defines Object Security for Constrained RESTful Environments (OSCORE), a method for application-layer protection of the Constrained Application Protocol (CoAP), using CBOR Object Signing and Encryption (COSE). OSCORE provides end-to-end protection between endpoints communicating using CoAP or CoAP-mappable HTTP. OSCORE is designed for constrained nodes and networks supporting a range of proxy operations, including translation between different transport protocols.</t>
              <t>Although an optional functionality of CoAP, OSCORE alters CoAP options processing and IANA registration. Therefore, this document updates RFC 7252.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="8613"/>
          <seriesInfo name="DOI" value="10.17487/RFC8613"/>
        </reference>
        <reference anchor="RFC9594">
          <front>
            <title>Key Provisioning for Group Communication Using Authentication and Authorization for Constrained Environments (ACE)</title>
            <author fullname="F. Palombini" initials="F." surname="Palombini"/>
            <author fullname="M. Tiloca" initials="M." surname="Tiloca"/>
            <date month="September" year="2024"/>
            <abstract>
              <t>This document defines how to use the Authentication and Authorization for Constrained Environments (ACE) framework to distribute keying material and configuration parameters for secure group communication. Candidate group members that act as Clients and are authorized to join a group can do so by interacting with a Key Distribution Center (KDC) acting as the Resource Server, from which they obtain the keying material to communicate with other group members. While defining general message formats as well as the interface and operations available at the KDC, this document supports different approaches and protocols for secure group communication. Therefore, details are delegated to separate application profiles of this document as specialized instances that target a particular group communication approach and define how communications in the group are protected. Compliance requirements for such application profiles are also specified.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9594"/>
          <seriesInfo name="DOI" value="10.17487/RFC9594"/>
        </reference>
        <reference anchor="I-D.ietf-lake-app-profiles">
          <front>
            <title>Coordinating the Use of Application Profiles for Ephemeral Diffie-Hellman Over COSE (EDHOC)</title>
            <author fullname="Marco Tiloca" initials="M." surname="Tiloca">
              <organization>RISE AB</organization>
            </author>
            <author fullname="Rikard Höglund" initials="R." surname="Höglund">
              <organization>RISE AB</organization>
            </author>
            <date day="2" month="March" year="2026"/>
            <abstract>
              <t>   The lightweight authenticated key exchange protocol Ephemeral Diffie-
   Hellman Over COSE (EDHOC) requires certain parameters to be agreed
   out-of-band, in order to ensure its successful completion.  To this
   end, application profiles specify the intended use of EDHOC to allow
   for the relevant processing and verifications to be made.  In order
   to ensure the applicability of such parameters and information beyond
   transport- or setup-specific scenarios, this document defines a
   canonical, CBOR-based representation that can be used to describe,
   distribute, and store EDHOC application profiles.  Furthermore, in
   order to facilitate interoperability between EDHOC implementations
   and support EDHOC extensibility for additional integrations, this
   document defines a number of means to coordinate the use of EDHOC
   application profiles.  Finally, this document defines a set of well-
   known EDHOC application profiles.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-ietf-lake-app-profiles-04"/>
        </reference>
        <reference anchor="I-D.ietf-ace-group-oscore-profile">
          <front>
            <title>The Group Object Security for Constrained RESTful Environments (Group OSCORE) Profile of the Authentication and Authorization for Constrained Environments (ACE) Framework</title>
            <author fullname="Marco Tiloca" initials="M." surname="Tiloca">
              <organization>RISE AB</organization>
            </author>
            <author fullname="Rikard Höglund" initials="R." surname="Höglund">
              <organization>RISE AB</organization>
            </author>
            <author fullname="Francesca Palombini" initials="F." surname="Palombini">
              <organization>Ericsson AB</organization>
            </author>
            <date day="2" month="March" year="2026"/>
            <abstract>
              <t>   This document specifies a profile for the Authentication and
   Authorization for Constrained Environments (ACE) framework.  The
   profile uses Group Object Security for Constrained RESTful
   Environments (Group OSCORE) to provide communication security between
   a client and one or multiple resource servers that are members of an
   OSCORE group.  The profile securely binds an OAuth 2.0 access token
   to the public key of the client associated with the private key used
   by that client in the OSCORE group.  The profile uses Group OSCORE to
   achieve server authentication and proof of possession of the client's
   private key.  Also, it provides proof of the client's membership to
   the OSCORE group by binding the access token to information from the
   Group OSCORE Security Context, thus allowing the resource server(s)
   to verify the client's membership upon receiving a message protected
   with Group OSCORE from the client.  Effectively, the profile enables
   fine-grained access control paired with secure group communication,
   in accordance with the Zero Trust principles.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-ietf-ace-group-oscore-profile-06"/>
        </reference>
        <reference anchor="I-D.ietf-ace-authcred-dtls-profile">
          <front>
            <title>Additional Formats of Authentication Credentials for the Datagram Transport Layer Security (DTLS) Profile for Authentication and Authorization for Constrained Environments (ACE)</title>
            <author fullname="Marco Tiloca" initials="M." surname="Tiloca">
              <organization>RISE AB</organization>
            </author>
            <author fullname="John Preuß Mattsson" initials="J. P." surname="Mattsson">
              <organization>Ericsson AB</organization>
            </author>
            <date day="7" month="January" year="2026"/>
            <abstract>
              <t>   This document updates the Datagram Transport Layer Security (DTLS)
   profile for Authentication and Authorization for Constrained
   Environments (ACE).  In particular, it specifies the use of
   additional formats of authentication credentials for establishing a
   DTLS session, when peer authentication is based on asymmetric
   cryptography.  Therefore, this document updates RFC 9202.  What is
   defined in this document is seamlessly applicable also if the profile
   uses Transport Layer Security (TLS) instead, as defined in RFC 9430.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-ietf-ace-authcred-dtls-profile-03"/>
        </reference>
      </references>
    </references>
    <?line 1652?>

<section anchor="sec-benefits-for-profiles">
      <name>Benefits for ACE Profiles</name>
      <t>For any profile of ACE, the following holds.</t>
      <ul spacing="normal">
        <li>
          <t>The SDC workflow defined in <xref target="sec-workflow"/> is effectively possible to use. This is beneficial for deployments where the communication leg between C and the RS is constrained, but the communication leg between the AS and RS is not.</t>
        </li>
        <li>
          <t>When the SDC workflow is used, the "token_upload" parameter defined in <xref target="sec-token_upload"/> is used:  </t>
          <ul spacing="normal">
            <li>
              <t>To inform the AS about C opting in to use the SDC workflow.</t>
            </li>
            <li>
              <t>To request the AS that the follow-up access token response includes certain information, if the AS has successfully uploaded the access token to the RS.</t>
            </li>
            <li>
              <t>To inform C that the AS has attempted to upload the access token to the RS, specifying whether the uploading has succeeded or failed.</t>
            </li>
          </ul>
        </li>
        <li>
          <t>When the SDC workflow is used, it remains possible for C to always obtain the issued access token from the AS.  </t>
          <t>
That is, by specifying the value 2 for the "token_upload" parameter in the access token request, C will ensure to receive the access token from the AS, even if the AS successfully uploads the access token to the RS on behalf of C.  </t>
          <t>
This is useful in profiles of ACE where C can re-upload the same access token to the RS by itself, e.g., in order to perform a key update like defined for the OSCORE profile <xref target="RFC9203"/>.</t>
        </li>
      </ul>
      <section anchor="dtls-profile">
        <name>DTLS Profile</name>
        <t>When the RPK mode of the DTLS profile is used (see <xref section="3.2" sectionFormat="of" target="RFC9202"/>), it becomes possible for the AS to effectively issue an access token intended to an audience that includes multiple RSs.</t>
        <t>This is enabled by the parameters "rs_cnf2" and "audience2" defined in <xref target="sec-rs_cnf2-audience2"/>, as well as by the "anchor_cnf" parameter defined in <xref target="sec-anchor_cnf"/>. This seamlessly applies also if the profile uses Transport Layer Security (TLS) <xref target="RFC8446"/> as defined in <xref target="RFC9430"/>.</t>
      </section>
      <section anchor="edhoc-and-oscore-profile">
        <name>EDHOC and OSCORE Profile</name>
        <t>When the EDHOC and OSCORE profile is used <xref target="I-D.ietf-ace-edhoc-oscore-profile"/>, it becomes possible for the AS to effectively issue an access token intended to an audience that includes multiple RSs.</t>
        <t>This is enabled by the parameters "rs_cnf2" and "audience2" defined in <xref target="sec-rs_cnf2-audience2"/>, as well as by the "anchor_cnf" parameter defined in <xref target="sec-anchor_cnf"/>.</t>
      </section>
    </section>
    <section anchor="sec-cddl-model" removeInRFC="true">
      <name>CDDL Model</name>
      <figure anchor="fig-cddl-model">
        <name>CDDL model</name>
        <sourcecode type="cddl"><![CDATA[
; OAuth Parameters CBOR Mappings
token_upload = 49
token_hash = 50
to_rs = 51
from_rs = 52
rs_cnf2 = 53
audience2 = 54
anchor_cnf = 55
token_series_id_param = 56

; CBOR Web Token (CWT) Claims
token_series_id_claim = 42

; CWT Confirmation Methods
x5chain = 24

; Custom Problem Detail Keys Registry
ace-error = 2

; EDHOC External Authorization Data
ead_session_id_label = 2
]]></sourcecode>
      </figure>
    </section>
    <section anchor="sec-document-updates" removeInRFC="true">
      <name>Document Updates</name>
      <section anchor="sec-07-08">
        <name>Version -07 to -08</name>
        <ul spacing="normal">
          <li>
            <t>Extended creation of "token_upload" to support the creation of token series "on-the-fly" if need be.</t>
          </li>
          <li>
            <t>Defined successful/failed token upload from the AS when the token targets a group-audience.</t>
          </li>
          <li>
            <t>Defined EDHOC EAD item Session ID.</t>
          </li>
          <li>
            <t>Clarifications:  </t>
            <ul spacing="normal">
              <li>
                <t>Relation between "token_upload" and use of RFC 9770.</t>
              </li>
              <li>
                <t>Values to avoid for "rs_cnf" in an access token request in some contexts.</t>
              </li>
            </ul>
          </li>
          <li>
            <t>IANA considerations:  </t>
            <ul spacing="normal">
              <li>
                <t>Added references to IANA registries.</t>
              </li>
              <li>
                <t>Added updates to recently registered OAuth parameters.</t>
              </li>
            </ul>
          </li>
          <li>
            <t>Fully decoupled the "to_rs" parameter from the "from_rs" parameter.</t>
          </li>
          <li>
            <t>Editorial fixes and improvements.</t>
          </li>
        </ul>
      </section>
      <section anchor="sec-06-07">
        <name>Version -06 to -07</name>
        <ul spacing="normal">
          <li>
            <t>Updated requirements for using "rs_cnf" in an access token request.</t>
          </li>
          <li>
            <t>More precise requirements on including/omitting parameters in access token request and response.</t>
          </li>
          <li>
            <t>Specified parameter encoding when messages are encoded in JSON.</t>
          </li>
          <li>
            <t>Moved content on dynamic update of access rights to the section about the "updated_rights" parameter.</t>
          </li>
          <li>
            <t>Clarifications:  </t>
            <ul spacing="normal">
              <li>
                <t>Access token responses are successful by definition.</t>
              </li>
              <li>
                <t>Successful response in general vs. response with 2.01 code.</t>
              </li>
              <li>
                <t>Explained the case where the RS has forgotten the access token to supersede.</t>
              </li>
            </ul>
          </li>
          <li>
            <t>IANA considerations: update entry for "access_token" in the "OAuth Parameters" registry.</t>
          </li>
          <li>
            <t>Editorial fixes and improvements.</t>
          </li>
        </ul>
      </section>
      <section anchor="sec-05-06">
        <name>Version -05 to -06</name>
        <ul spacing="normal">
          <li>
            <t>Defined dynamic update of access rights in the SDC workflow.</t>
          </li>
          <li>
            <t>Defined the new "updated_rights" parameter.</t>
          </li>
          <li>
            <t>Clarified practical requirements at the AS for processing the "to_rs" parameter.</t>
          </li>
          <li>
            <t>IANA considerations: update in the "Parameter Usage Location" column for some entries of the "OAuth Parameters" registry.</t>
          </li>
          <li>
            <t>Adjusted abbreviations in the CDDL model to avoid collisions.</t>
          </li>
          <li>
            <t>Removed appendix with placeholder ideas.</t>
          </li>
          <li>
            <t>Editorial fixes and improvements.</t>
          </li>
        </ul>
      </section>
      <section anchor="sec-04-05">
        <name>Version -04 to -05</name>
        <ul spacing="normal">
          <li>
            <t>Error handling and error code for failed PoP verification at the AS.</t>
          </li>
          <li>
            <t>Extended definition of the parameters "to_rs" and "from_rs".</t>
          </li>
          <li>
            <t>Fixes and presentation improvements in the IANA considerations.</t>
          </li>
          <li>
            <t>Updated references.</t>
          </li>
          <li>
            <t>Revised order of some sections.</t>
          </li>
          <li>
            <t>Editorial fixes and improvements.</t>
          </li>
        </ul>
      </section>
      <section anchor="sec-03-04">
        <name>Version -03 to -04</name>
        <ul spacing="normal">
          <li>
            <t>Updated document title.</t>
          </li>
          <li>
            <t>Defined name for the new workflow.</t>
          </li>
          <li>
            <t>Improved definition of "token series".</t>
          </li>
          <li>
            <t>Revised note on the new workflow suitable for "unaware" clients.</t>
          </li>
          <li>
            <t>Revised criterion for the AS to choose a token series identifier.</t>
          </li>
          <li>
            <t>Extended semantics of the "ace_profile" parameter.</t>
          </li>
          <li>
            <t>Specified means for C and the AS to coordinate on the exchange of public authentication credentials.</t>
          </li>
          <li>
            <t>Removed content on bidirectional access control.</t>
          </li>
          <li>
            <t>Suggested value ranges for codepoints to register.</t>
          </li>
          <li>
            <t>Editorial fixes and improvements.</t>
          </li>
        </ul>
      </section>
      <section anchor="sec-02-03">
        <name>Version -02 to -03</name>
        <ul spacing="normal">
          <li>
            <t>Defined parameter and claim "token_series_id".</t>
          </li>
          <li>
            <t>Defined parameters "to_rs" and "from_rs".</t>
          </li>
          <li>
            <t>Defined use of "to_rs" and "from_rs" in the OSCORE profile.</t>
          </li>
          <li>
            <t>Lowercase use of "client", "resource server", and "authorization server".</t>
          </li>
          <li>
            <t>Fixed naming of parameters/claims for audience.</t>
          </li>
          <li>
            <t>Split elision and comments in the examples in CBOR Diagnostic Notation.</t>
          </li>
          <li>
            <t>SHA-256 is mandatory to implement for computing token hashes.</t>
          </li>
          <li>
            <t>Fixes in the IANA considerations.</t>
          </li>
          <li>
            <t>Removed (parts of) appendices that are not needed anymore.</t>
          </li>
          <li>
            <t>Clarifications and editorial improvements.</t>
          </li>
        </ul>
      </section>
      <section anchor="sec-01-02">
        <name>Version -01 to -02</name>
        <ul spacing="normal">
          <li>
            <t>CBOR diagnostic notation uses placeholders from a CDDL model.</t>
          </li>
          <li>
            <t>Note on the new workflow supporting also non-ACE clients.</t>
          </li>
          <li>
            <t>Revised semantics of the "token_upload" parameter.</t>
          </li>
          <li>
            <t>Defined the new "token_hash" parameter.</t>
          </li>
          <li>
            <t>First definition of bidirectional access control through a single access token.</t>
          </li>
          <li>
            <t>Revised and extended considerations and next steps in appendices.</t>
          </li>
          <li>
            <t>Clarifications and editorial improvements.</t>
          </li>
        </ul>
      </section>
      <section anchor="sec-00-01">
        <name>Version -00 to -01</name>
        <ul spacing="normal">
          <li>
            <t>Definition of the "token series" moved to the "Terminology" section.</t>
          </li>
          <li>
            <t>Clarifications and fixes on using parameters in messages.</t>
          </li>
          <li>
            <t>Amended two of the requirements on profiles of the framework.</t>
          </li>
          <li>
            <t>The client has to opt-in for using the new workflow.</t>
          </li>
          <li>
            <t>Parameter "token_uploaded" renamed to "token_upload".</t>
          </li>
          <li>
            <t>Updated format of error response payload to use RFC 9290.</t>
          </li>
          <li>
            <t>Security considerations inherited from other documents.</t>
          </li>
          <li>
            <t>Editorial fixes and improvements.</t>
          </li>
        </ul>
      </section>
    </section>
    <section numbered="false" anchor="acknowledgments">
      <name>Acknowledgments</name>
      <t>The authors sincerely thank <contact fullname="Christian Amsüss"/>, <contact fullname="Rikard Höglund"/>, and <contact fullname="Dave Robin"/> for their comments and feedback.</t>
      <t>This work was supported by the Sweden's Innovation Agency VINNOVA within the EUREKA CELTIC-NEXT project CYPRESS; and by the H2020 project SIFIS-Home (Grant agreement 952652).</t>
    </section>
  </back>
  <!-- ##markdown-source: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-->

</rfc>
