Abstract
This document defines how to authenticate users and Accessing Parties on a web services interface. It also defines how a Resource Owner can delegate Access to its Resources to an Accessing Party. Within this context, this document also defines the necessary roles and required separation of duties between these in order to fulfil requirements stated on security, data privacy and data protection.
All conditions and dependencies of the roles are defined towards a reference implementation using OAuth 2.0 compatible framework and OpenID Connect 1.0 compatible framework.
General information
-
Status: WithdrawnPublication date: 2019-05Stage: Withdrawal of International Standard [95.99]
-
Edition: 1Number of pages: 17
-
Technical Committee :ISO/TC 22/SC 31ICS :43.040.15
- RSS updates
Life cycle
-
Now
-
Revised by
PublishedISO 20078-3:2021
Got a question?
Check out our FAQs
Customer care
+41 22 749 08 88
Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)