Network Tokens

Document Type Expired Internet-Draft (individual)
Authors Yiannis Yiakoumis  , Nick McKeown  , Frode Sorensen 
Last updated 2021-06-25 (latest revision 2020-12-22)
Stream (None)
Intended RFC status (None)
Expired & archived
plain text htmlized pdfized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


Network tokens is a method for endpoints to explicitly and securely coordinate with networks about how their traffic is treated. They are inserted by endpoints in existing protocols, interpreted by trusted networks, and may be signed or encrypted to meet security and privacy requirements. Network tokens provide a means for network operators to expose datapath services (such as a zero-rating service, a user-driven QoS service, or a firewall whitelist), and for end users and application providers to access such services. Network tokens are inspired and derived by existing security tokens (like JWT and CWT), and borrow several of their core ideas along with security and privacy properties.


Yiannis Yiakoumis (
Nick McKeown (
Frode Sorensen (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)