In the event of an unauthorized, the RS has the ability to return a URL to the AS it knows about. If it returns coaps://AS/token, then this might be thought of implying that one needs to use dtls to talk to the AS rather than using OSCORE. The same might be true if you just returned coap://AS/token. Once upon a time, I thought there was some work being done in the core group that would help clean this up. It has not finished, nor have I seen much about it recently.
Jim > -----Original Message----- > From: Carsten Bormann <c...@tzi.org> > Sent: Monday, July 16, 2018 7:14 AM > To: Jim Schaad <i...@augustcellars.com> > Cc: draft-ietf-ace-dtls-author...@ietf.org; ace <ace@ietf.org> > Subject: Re: Review Comments on -03 > > Hi Jim, > > > On Jul 15, 2018, at 20:48, Jim Schaad <i...@augustcellars.com> wrote: > > > > * It is too bad that we don't have the generic coap schemas defined > > yet so that we can use that as part of the URL returned with an access > > denied response. > > Can you expand on that? What should we have defined? > > Grüße, Carsten _______________________________________________ Ace mailing list Ace@ietf.org https://www.ietf.org/mailman/listinfo/ace
