View source for IETF RFC 6750 - OAuth 2.0 Bearer Token Usage

'''Title''':
The OAuth 2.0 Authorization Framework: Bearer Token Usage (Request for Comments: 6750) (ISSN: 2070-1721)

<br/>
'''Category''':
Authentication protocol specification

<br/>
'''Date''':
October 2012

<br/>
'''Creator''':
Internet Engineering Task Force (IETF)

<br/>
'''URL''':
http://www.ietf.org/rfc/rfc6750.txt

<br/>	
'''Description''':
This specification describes how to use bearer tokens in HTTP requests to access OAuth 2.0 protected resources.  Any party in possession of a bearer token (a "bearer") can use it to get access to the associated resources (without demonstrating possession of a cryptographic key).  To prevent misuse, bearer tokens need to be protected from disclosure in storage and in transport.

<br />
'''Privacy''':

<br />
'''Security''':

<br />
'''Interoperability''':

<br />
'''Terms''':
* "Bearer Token" - A security token with the property that any party in possession of the token (a "bearer") can use the token in any way that any other party in possession of it can.  Using a bearer token does not require a bearer to prove possession of cryptographic key material (proof-of-possession).
* All other terms are as defined in "The OAuth 2.0 Authorization Framework" [RFC6749].

[[Category:Standards]]