Introduction text #7

paulbastian · 2023-05-17T18:27:28Z

The current draft says:

[RFC7521] defines a way for a client to include an assertion in a token request to an authorization server for the purposes of client authentication. This specification extends this mechanism to provide a way for a client instance to authenticate it self with the authorization server through an attested key based authentication scheme.

I don't like the description of a "an attested key based authentication scheme", as key attestations are not always possible and it is more about attesting the wallet and the key being a mechanism.

I would rather describe the current approach as a

remote client (instance) attestation scheme
remote wallet (instance) attestation scheme

tplooker · 2023-05-18T06:54:25Z

Agreed I dont like it particularly either, what about just

[RFC7521] defines a way for a client to include an assertion in a token request to an authorization server for the purposes of client authentication. This specification extends this mechanism to provide a way for a client instance to authenticate itself with the authorization server through an attestation based authentication scheme.

paulbastian · 2023-05-22T16:21:37Z

I'm fine to close this, see #11

paulbastian · 2023-09-06T06:56:38Z

Rephrased in #39

paulbastian closed this as completed Sep 6, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Introduction text #7

Introduction text #7

paulbastian commented May 17, 2023

tplooker commented May 18, 2023 •

edited

Loading

paulbastian commented May 22, 2023

paulbastian commented Sep 6, 2023

Introduction text #7

Introduction text #7

Comments

paulbastian commented May 17, 2023

tplooker commented May 18, 2023 • edited Loading

paulbastian commented May 22, 2023

paulbastian commented Sep 6, 2023

tplooker commented May 18, 2023 •

edited

Loading