testing_dl.txt   testing_dl.prepped.txt 
skipping to change at line 58 skipping to change at line 58
modifications of such material outside the IETF Standards Process. modifications of such material outside the IETF Standards Process.
Without obtaining an adequate license from the person(s) controlling Without obtaining an adequate license from the person(s) controlling
the copyright in such materials, this document may not be modified the copyright in such materials, this document may not be modified
outside the IETF Standards Process, and derivative works of it may outside the IETF Standards Process, and derivative works of it may
not be created outside the IETF Standards Process, except to format not be created outside the IETF Standards Process, except to format
it for publication as an RFC or to translate it into languages other it for publication as an RFC or to translate it into languages other
than English. than English.
Table of Contents Table of Contents
1. Introduction 1. Introduction (name-introduction)
2. Terminology 2. Terminology (name-terminology)
3. Trust Model 3. Trust Model (name-trust-model)
3.1. Authenticated Entities 3.1. Authenticated Entities (name-authenticated-entities)
3.2. Unauthenticated Entities 3.2. Unauthenticated Entities
4. Overview (name-unauthenticated-entities)
4.1. Initial Signaling 4. Overview (name-overview)
4.1. Initial Signaling (name-initial-signaling)
4.2. Media Consent Verification 4.2. Media Consent Verification
4.3. DTLS Handshake (name-media-consent-verification)
4.3. DTLS Handshake (name-dtls-handshake)
4.4. Communications and Consent Freshness 4.4. Communications and Consent Freshness
5. SDP Identity Attribute (name-communications-and-consent-)
5. SDP Identity Attribute (name-sdp-identity-attribute)
5.1. Offer/Answer Considerations 5.1. Offer/Answer Considerations
(name-offer-answer-considerations)
5.1.1. Generating the Initial SDP Offer 5.1.1. Generating the Initial SDP Offer
(name-generating-the-initial-sdp-)
5.1.2. Generating of SDP Answer 5.1.2. Generating of SDP Answer
(name-generating-of-sdp-answer)
5.1.3. Processing an SDP Offer or Answer 5.1.3. Processing an SDP Offer or Answer
(name-processing-an-sdp-offer-or-)
5.1.4. Modifying the Session 5.1.4. Modifying the Session
(name-modifying-the-session)
6. Detailed Technical Description 6. Detailed Technical Description
(name-detailed-technical-descript)
6.1. Origin and Web Security Issues 6.1. Origin and Web Security Issues
(name-origin-and-web-security-iss)
6.2. Device Permissions Model 6.2. Device Permissions Model
6.3. Communications Consent (name-device-permissions-model)
6.4. IP Location Privacy 6.3. Communications Consent (name-communications-consent)
6.5. Communications Security 6.4. IP Location Privacy (name-ip-location-privacy)
6.5. Communications Security (name-communications-security)
7. Web-Based Peer Authentication 7. Web-Based Peer Authentication
(name-web-based-peer-authenticati)
7.1. Trust Relationships: IdPs, APs, and RPs 7.1. Trust Relationships: IdPs, APs, and RPs
7.2. Overview of Operation (name-trust-relationships-idps-ap)
7.2. Overview of Operation (name-overview-of-operation)
7.3. Items for Standardization 7.3. Items for Standardization
(name-items-for-standardization)
7.4. Binding Identity Assertions to JSEP Offer/Answer 7.4. Binding Identity Assertions to JSEP Offer/Answer
Transactions Transactions (name-binding-identity-assertions)
7.4.1. Carrying Identity Assertions 7.4.1. Carrying Identity Assertions
7.5. Determining the IdP URI (name-carrying-identity-assertion)
7.5.1. Authenticating Party 7.5. Determining the IdP URI (name-determining-the-idp-uri)
7.5.2. Relying Party 7.5.1. Authenticating Party (name-authenticating-party)
7.6. Requesting Assertions 7.5.2. Relying Party (name-relying-party)
7.7. Managing User Login 7.6. Requesting Assertions (name-requesting-assertions)
8. Verifying Assertions 7.7. Managing User Login (name-managing-user-login)
8.1. Identity Formats 8. Verifying Assertions (name-verifying-assertions)
9. Security Considerations 8.1. Identity Formats (name-identity-formats)
9. Security Considerations (name-security-considerations)
9.1. Communications Security 9.1. Communications Security
9.2. Privacy (name-communications-security-2)
9.3. Denial of Service 9.2. Privacy (name-privacy)
9.3. Denial of Service (name-denial-of-service)
9.4. IdP Authentication Mechanism 9.4. IdP Authentication Mechanism
(name-idp-authentication-mechanis)
9.4.1. PeerConnection Origin Check 9.4.1. PeerConnection Origin Check
9.4.2. IdP Well-known URI (name-peerconnection-origin-check)
9.4.2. IdP Well-known URI (name-idp-well-known-uri)
9.4.3. Privacy of IdP-generated identities and the 9.4.3. Privacy of IdP-generated identities and the
hosting site hosting site (name-privacy-of-idp-generated-id)
9.4.4. Security of Third-Party IdPs 9.4.4. Security of Third-Party IdPs
(name-security-of-third-party-idp)
9.4.5. Web Security Feature Interactions 9.4.5. Web Security Feature Interactions
10. IANA Considerations (name-web-security-feature-intera)
11. References 10. IANA Considerations (name-iana-considerations)
11.1. Normative References 11. References (name-references)
11.2. Informative References 11.1. Normative References (name-normative-references)
Acknowledgements 11.2. Informative References (name-informative-references)
Author's Address A Acknowledgements (name-acknowledgements)
B Author's Address (name-authors-address)
1. Introduction 1. Introduction
The Real-Time Communications on the Web (RTCWEB) working group The Real-Time Communications on the Web (RTCWEB) working group
standardized protocols for real-time communications between Web standardized protocols for real-time communications between Web
browsers, generally called "WebRTC" [RFC9995]. The major use cases browsers, generally called "WebRTC" [RFC9995]. The major use cases
for WebRTC technology are real-time audio and/or video calls, Web for WebRTC technology are real-time audio and/or video calls, Web
conferencing, and direct data transfer. Unlike most conventional conferencing, and direct data transfer. Unlike most conventional
real-time systems, (e.g., SIP-based [RFC3261] soft phones) WebRTC real-time systems, (e.g., SIP-based [RFC3261] soft phones) WebRTC
communications are directly controlled by some Web server, via a communications are directly controlled by some Web server, via a
 End of changes. 23 change blocks. 
31 lines changed or deleted 51 lines changed or added

This html diff was produced by rfcdiff 1.45. The latest version is available from http://tools.ietf.org/tools/rfcdiff/

mirror server hosted at Truenetwork, Russian Federation.