This document specifies an authentication service that uses the Extensible Authentication Protocol (EAP) transported employing Constrained Application Protocol (CoAP) messages. As such, it defines an EAP lower layer based on CoAP called CoAP-EAP. One of the main goals is to authenticate a CoAP-enabled IoT device (EAP peer) that intends to join a security domain managed by a Controller (EAP authenticator). Secondly, it allows deriving key material to protect CoAP messages exchanged between them based on Object Security for Constrained RESTful Environments (OSCORE), enable the establishment of a security association between them.
Working Group Summary
No issues, broad consensus.
No issues with the document. There is an open source implementation to support CMP over CoAP maintained by @David von Oheimb.
The Shepherd believesthese do not follow the draft exactly but are based on this draft.
Document Shepherd: Loganaden Velvindron and Paul Wouters
Responsible Area Director? Paul Wouters
'The IANA Expert(s) for the registries in this document are Klaus Hartke (primary), Carsten Bormann (secondary), Jaime Jimenez (secondary), Alexander Pelov (secondary), Hendrik Brockhaus, David von Oheimb, John Gray, Mark Nottingham