@techreport{rosomakho-wimse-tokentranslation-reqs-00, number = {draft-rosomakho-wimse-tokentranslation-reqs-00}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-rosomakho-wimse-tokentranslation-reqs/00/}, author = {Yaroslav Rosomakho and Dean H. Saxe and Dmitry Izumskiy}, title = {{Requirements for WIMSE Token Translation}}, pagetotal = 6, year = 2024, month = jul, day = 7, abstract = {This document outlines the requirements for workload token translation within the context of the Workload Identity in Multi System Environments (WIMSE). Token translation may be required for interoperability between workloads or for complying with security requirements of multi-system environments. This requirement document considers various aspects of token translation, such as changes in token format, content encoding, cryptographic properties, and context embedding. Additionally, this document raises security considerations to be addressed by specific token translation implementations, including replay attacks, access control, and privacy concerns.}, }