@techreport{ietf-core-oscore-groupcomm-23, number = {draft-ietf-core-oscore-groupcomm-23}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-ietf-core-oscore-groupcomm/23/}, author = {Marco Tiloca and Göran Selander and Francesca Palombini and John Preuß Mattsson and Rikard Höglund}, title = {{Group Object Security for Constrained RESTful Environments (Group OSCORE)}}, pagetotal = 117, year = 2024, month = sep, day = 26, abstract = {This document defines the security protocol Group Object Security for Constrained RESTful Environments (Group OSCORE), providing end-to-end security of CoAP messages exchanged between members of a group, e.g., sent over IP multicast. In particular, the described protocol defines how OSCORE is used in a group communication setting to provide source authentication for CoAP group requests, sent by a client to multiple servers, and for protection of the corresponding CoAP responses. Group OSCORE also defines a pairwise mode where each member of the group can efficiently derive a symmetric pairwise key with any other member of the group for pairwise OSCORE communication. Group OSCORE can be used between endpoints communicating with CoAP or CoAP-mappable HTTP.}, }