Technical Summary
This document defines an HTTP authentication scheme that can be used
by clients to redeem Privacy Pass tokens with an origin. It can also
be used by origins to challenge clients to present an acceptable
Privacy Pass token.
Working Group Summary
The document is intended to address a specific charter point for the PRIVACYPASS
working group: to "specify a HTTP-layer API for the protocol". Initial proposals
defined a REST API, but the proposal was ultimately streamlined to this form. The
working group has a clear consensus that this is the right approach and adequately
addresses the need for an "HTTP-layer API". The AD was consulted to see if this was
considered in charter.
Document Quality
A number of vendors are implementing or planning to implement.
Personnel
The Document Shepherd for this document is Benjamin M. Schwartz. The
Responsible Area Director is Paul Wouters.