Federated Authentication for the Registration Data Access Protocol Using OpenID Connect
RFC 9560, “Federated Authentication for the Registration Data Access Protocol Using OpenID Connect”, is a Proposed Standard document published in April 2024 by S. Hollenbeck. The canonical text is published by the RFC Editor.
Abstract
The Registration Data Access Protocol (RDAP) provides Representational State Transfer (RESTful) web services to retrieve registration metadata from domain name and regional internet registries. RDAP allows a server to make access control decisions based on client identity, and as such, it includes support for client identification features provided by the Hypertext Transfer Protocol (HTTP). Identification methods that require clients to obtain and manage credentials from every RDAP server operator present management challenges for both clients and servers, whereas a federated authentication system would make it easier to operate and use RDAP without the need to maintain server-specific client credentials. This document describes a federated authentication system for RDAP based on OpenID Connect.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 9560 is hosted at rfc-editor.org. Available in HTML,TXT,PDF,XML.
- RFC 9559 Matroska Media Container Format Specification
- RFC 9561 Using the Parallel NFS SCSI Layout to Access Non-Volatile Memory Express Storage Devices
- RFC 9558 Use of GOST 2012 Signature Algorithms in DNSKEY and RRSIG Resource Records for DNSSEC
- RFC 9562 Universally Unique IDentifiers
- RFC 9557 Date and Time on the Internet: Timestamps with Additional Information
- RFC 9563 SM2 Digital Signature Algorithm for DNSSEC
- RFC 9556 Internet of Things Edge Challenges and Functions
- RFC 9564 Faster Than Light Speed Protocol