Subject Identifiers for Security Event Tokens
RFC 9493, “Subject Identifiers for Security Event Tokens”, is a Proposed Standard document published in December 2023 by A. Backman, M. Scurtescu, P. Jain. The canonical text is published by the RFC Editor.
Abstract
Security events communicated within Security Event Tokens may support a variety of identifiers to identify subjects related to the event. This specification formalizes the notion of Subject Identifiers as structured information that describes a subject and named formats that define the syntax and semantics for encoding Subject Identifiers as JSON objects. It also establishes a registry for defining and allocating names for such formats as well as the JSON Web Token (JWT) "sub_id" Claim.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 9493 is hosted at rfc-editor.org. Available in HTML,TXT,PDF,XML.
- RFC 9492 OSPF Application-Specific Link Attributes
- RFC 9494 Long-Lived Graceful Restart for BGP
- RFC 9491 Integration of the Network Service Header and Segment Routing for Service Function Chaining
- RFC 9495 Certification Authority Authorization Processing for Email Addresses
- RFC 9496 The ristretto255 and decaf448 Groups
- RFC 9489 Label Switched Path Ping Mechanisms for EVPN and Provider Backbone Bridging EVPN
- RFC 9497 Oblivious Pseudorandom Functions Using Prime-Order Groups
- RFC 9488 Local Protection Enforcement in the Path Computation Element Communication Protocol