Requirements for Trust and Privacy in WebRTC Peer-to-peer Authentication
draft-copeland-rtcweb-p2p-idp-auth-00

Document Type Expired Internet-Draft (individual)
Last updated 2017-03-30 (latest revision 2016-09-26)
Stream (None)
Intended RFC status (None)
Formats
Expired & archived
plain text pdf html bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at
https://www.ietf.org/archive/id/draft-copeland-rtcweb-p2p-idp-auth-00.txt

Abstract

This document studies the relationships of WebRTC communication users with their web Calling Services (CS) and their Identity Providers (IdPs), in order to identify requirements for IdP based peer-to-peer authentication. This study focuses in particular on issues of privacy, security and trust that are raised by the introduction of the IdP into the WebRTC call model, and by a different browser-based calling paradigm, compared with Mobile networks or traditional VoIP systems. The document lists privacy and trust scenarios for WebRTC authentication for individuals as well as organizations. This contribution is proposed to the RTCWEB working group.

Authors

Rebecca Copeland (rebecca.copeland@coreviewpoint.com)
Kevin Corre (kevin1.corre@orange.com)
Ingo Friese (ingo.friese@telekom.de)
Saad El Jaouhari (saad.eljaouhari@telecom-bretagne.eu)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)