Application Bridging for Federated Access Beyond Web (ABFAB) Architecture
draft-lear-abfab-arch-02

Document Type Replaced Internet-Draft (individual)
Last updated 2012-05-18 (latest revision 2011-03-09)
Replaced by draft-ietf-abfab-arch
Stream (None)
Intended RFC status (None)
Formats
Expired & archived
plain text pdf html bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-ietf-abfab-arch
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at
https://www.ietf.org/archive/id/draft-lear-abfab-arch-02.txt

Abstract

Over the last decade a substantial amount of work has occurred in the space of federated access management. Most of this effort has focused on two use-cases: network and web-based access. However, the solutions to these use-cases that have been proposed and deployed tend to have few common building blocks in common. This memo describes an architecture that makes use of extensions to the commonly used security mechanisms for both federated and non- federated access management, including RADIUS, Diameter, GSS, GS2, EAP and SAML. The architecture addresses the problem of federated access management to primarily non-web-based services, in a manner that will scale to large numbers of federations.

Authors

Josh Howlett (josh.howlett@ja.net)
Sam Hartman (hartmans-ietf@mit.edu)
Hannes Tschofenig (Hannes.Tschofenig@gmx.net)
Eliot Lear (lear@cisco.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)