OAuth 2.0 Step Up Authentication Challenge Protocol
RFC 9470, “OAuth 2.0 Step Up Authentication Challenge Protocol”, is a Proposed Standard document published in September 2023 by V. Bertocci, B. Campbell. The canonical text is published by the RFC Editor.
Abstract
It is not uncommon for resource servers to require different authentication strengths or recentness according to the characteristics of a request. This document introduces a mechanism that resource servers can use to signal to a client that the authentication event associated with the access token of the current request does not meet its authentication requirements and, further, how to meet them. This document also codifies a mechanism for a client to request that an authorization server achieve a specific authentication strength or recentness when processing an authorization request.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 9470 is hosted at rfc-editor.org. Available in HTML,TXT,PDF,XML.
- RFC 9469 Applicability of Ethernet Virtual Private Network to Network Virtualization over Layer 3 Networks
- RFC 9471 DNS Glue Requirements in Referral Responses
- RFC 9472 A YANG Data Model for Reporting Software Bills of Materials and Vulnerability Information
- RFC 9468 Unsolicited Bidirectional Forwarding Detection for Sessionless Applications
- RFC 9473 A Vocabulary of Path Properties
- RFC 9474 RSA Blind Signatures
- RFC 9466 PIM Assert Message Packing
- RFC 9475 Messaging Use Cases and Extensions for Secure Telephone Identity Revisited