OAuth 2.0 Threat Model and Security Considerations
RFC 6819

Revision differences

Document history

Date Rev. By Action
2015-10-14 08 (System) Notify list changed from oauth-chairs@ietf.org, draft-ietf-oauth-v2-threatmodel@ietf.org to (None)
2013-01-08 08 (System) RFC published
2012-10-15 08 Amy Vezza State changed to RFC Ed Queue from Approved-announcement sent
2012-10-12 08 (System) IANA Action state changed to No IC
2012-10-12 08 Amy Vezza State changed to Approved-announcement sent from IESG Evaluation::AD Followup
2012-10-12 08 Amy Vezza IESG has approved the document
2012-10-12 08 Amy Vezza Closed "Approve" ballot
2012-10-12 08 Amy Vezza Ballot approval text was generated
2012-10-12 08 Amy Vezza Ballot writeup was changed
2012-10-12 08 Stephen Farrell Ballot writeup was changed
2012-10-08 08 Sean Turner [Ballot comment]
I've cleared.  Thanks for addressing my discusses.
2012-10-08 08 Sean Turner [Ballot Position Update] Position for Sean Turner has been changed to No Objection from Discuss
2012-10-06 08 (System) Sub state has been changed to AD Followup from Revised ID Needed
2012-10-06 08 Torsten Lodderstedt New version available: draft-ietf-oauth-v2-threatmodel-08.txt
2012-10-02 07 Stephen Farrell State changed to IESG Evaluation::Revised ID Needed from IESG Evaluation::AD Followup
2012-09-20 07 Tero Kivinen Closed request for Last Call review by SECDIR with state 'No Response'
2012-08-31 07 Miguel García Request for Telechat review by GENART Completed: Ready with Nits. Reviewer: Miguel Garcia.
2012-08-30 07 Cindy Morgan State changed to IESG Evaluation::AD Followup from IESG Evaluation
2012-08-30 07 Sean Turner
[Ballot comment]
1) The base spec (https://datatracker.ietf.org/doc/draft-ietf-oauth-v2/) is now a "framework".  Not sure that should also be reflected in ...
2012-08-30 07 Sean Turner Ballot comment text updated for Sean Turner
2012-08-30 07 Sean Turner
[Ballot discuss]
Hoping these will be fairly easy to work through.

1) Entirely possible I missed this bit:

My favorite bit in the base spec ...
2012-08-30 07 Sean Turner
[Ballot comment]
1) The base spec (https://datatracker.ietf.org/doc/draft-ietf-oauth-v2/) is now a "framework".  Not sure that should also be reflected in ...
2012-08-30 07 Sean Turner [Ballot Position Update] New position, Discuss, has been recorded for Sean Turner
2012-08-30 07 Pete Resnick
[Ballot comment]
I think having all of this analysis written down is fine, but I'm not convinced this document will end up being useful ...
2012-08-30 07 Pete Resnick [Ballot Position Update] New position, No Objection, has been recorded for Pete Resnick
2012-08-30 07 Stewart Bryant
[Ballot comment]
On the basis of a quick scan of the text I can see no Routing issues with this document and am thus taking ...
2012-08-30 07 Stewart Bryant [Ballot Position Update] New position, No Objection, has been recorded for Stewart Bryant
2012-08-29 07 Adrian Farrel [Ballot comment]
I am ballotting No Objection based ona quick read and assuming that the
Applications and Security ADs have done their jobs.
2012-08-29 07 Adrian Farrel [Ballot Position Update] New position, No Objection, has been recorded for Adrian Farrel
2012-08-29 07 Ron Bonica [Ballot Position Update] New position, No Objection, has been recorded for Ronald Bonica
2012-08-28 07 Robert Sparks [Ballot Position Update] New position, No Objection, has been recorded for Robert Sparks
2012-08-28 07 Russ Housley [Ballot Position Update] New position, No Objection, has been recorded for Russ Housley
2012-08-28 07 Wesley Eddy [Ballot Position Update] New position, No Objection, has been recorded for Wesley Eddy
2012-08-23 07 Jean Mahoney Request for Telechat review by GENART is assigned to Miguel Garcia
2012-08-23 07 Brian Haberman [Ballot Position Update] New position, No Objection, has been recorded for Brian Haberman
2012-08-17 07 Martin Stiemerling [Ballot Position Update] New position, No Objection, has been recorded for Martin Stiemerling
2012-08-16 07 Torsten Lodderstedt New version available: draft-ietf-oauth-v2-threatmodel-07.txt
2012-08-13 06 Barry Leiba [Ballot Position Update] New position, Yes, has been recorded for Barry Leiba
2012-08-02 06 Stephen Farrell Placed on agenda for telechat - 2012-08-30
2012-08-02 06 Stephen Farrell State changed to IESG Evaluation from Waiting for AD Go-Ahead::Revised ID Needed
2012-08-02 06 Stephen Farrell Ballot has been issued
2012-08-02 06 Stephen Farrell [Ballot Position Update] New position, Yes, has been recorded for Stephen Farrell
2012-08-02 06 Stephen Farrell Created "Approve" ballot
2012-08-02 06 Stephen Farrell Ballot writeup was changed
2012-07-13 06 Miguel García Request for Last Call review by GENART Completed. Reviewer: Miguel Garcia.
2012-07-11 06 Stephen Farrell State changed to Waiting for AD Go-Ahead::Revised ID Needed from Waiting for AD Go-Ahead
2012-07-11 06 (System) State changed to Waiting for AD Go-Ahead from In Last Call
2012-07-10 06 Stephen Farrell Ballot writeup was changed
2012-07-09 06 Pearl Liang
IANA has reviewed draft-ietf-oauth-v2-threatmodel-06, which is currently
in Last Call, and has the following comments:

IANA understands that, upon approval of this document, there are ...
2012-06-28 06 Jean Mahoney Request for Last Call review by GENART is assigned to Miguel Garcia
2012-06-28 06 Samuel Weiler Request for Last Call review by SECDIR is assigned to Warren Kumari
2012-06-27 06 Cindy Morgan State changed to In Last Call from In Last Call
2012-06-27 06 Cindy Morgan State changed to In Last Call from Last Call Requested
2012-06-27 06 Cindy Morgan
The following Last Call announcement was sent out:

From: The IESG
To: IETF-Announce
Cc: oauth@ietf.org
Reply-To: ietf@ietf.org
Subject: Last Call:  ...
2012-06-27 06 Stephen Farrell Last call was requested
2012-06-27 06 Stephen Farrell Ballot approval text was generated
2012-06-27 06 Stephen Farrell Ballot writeup was generated
2012-06-27 06 Stephen Farrell State changed to Last Call Requested from AD Evaluation::AD Followup
2012-06-27 06 Stephen Farrell Last call announcement was generated
2012-06-27 06 Stephen Farrell Last call announcement was generated
2012-06-27 06 (System) Sub state has been changed to AD Followup from Revised ID Needed
2012-06-27 06 Torsten Lodderstedt New version available: draft-ietf-oauth-v2-threatmodel-06.txt
2012-05-29 05 Amy Vezza Note added 'Barry Leiba (barryleiba@computer.org) is the document shepherd.'
2012-05-29 05 Stephen Farrell State changed to AD Evaluation::Revised ID Needed from Publication Requested
2012-05-28 05 Barry Leiba
PROTO writeup for draft-ietf-oauth-v2-threatmodel-05

(1) What type of RFC is being requested (BCP, Proposed Standard,
Internet Standard, Informational, Experimental, or Historic)?  Why
is this ...
2012-05-28 05 Barry Leiba Intended Status changed to Informational
2012-05-28 05 Barry Leiba IESG process started in state Publication Requested
2012-05-27 05 Torsten Lodderstedt New version available: draft-ietf-oauth-v2-threatmodel-05.txt
2012-05-25 04 Torsten Lodderstedt New version available: draft-ietf-oauth-v2-threatmodel-04.txt
2012-05-25 03 Torsten Lodderstedt New version available: draft-ietf-oauth-v2-threatmodel-03.txt
2012-02-19 02 (System) New version available: draft-ietf-oauth-v2-threatmodel-02.txt
2011-11-22 02 Barry Leiba WGLC ends on 9 Dec
2011-11-22 02 Barry Leiba IETF state changed to In WG Last Call from WG Document
2011-10-26 01 (System) New version available: draft-ietf-oauth-v2-threatmodel-01.txt
2011-07-01 00 (System) New version available: draft-ietf-oauth-v2-threatmodel-00.txt