Home - SEI-TAS/ace-client GitHub Wiki

The SEI ACE Implementation for Constrained and Unconstrained Resource Servers consists of five repositories:

• Client
• Authorization Server
• Unconstrained Resource Server
• Constrained Resource Server
• Supporting Libraries

It is an implementation of the ACE Working Group proposal for Authentication and Authorization in Resource-Constrained Environments with two extensions to support operation in disadvantaged environments:

• RS to AS Pairing
• Periodic introspection for token revocation

The implementation is based on previous work in establishing trusted identities in disconnected edge environments and explicit threat modeling. Supporting documents for this work are:

• Sequence Diagrams
• Threat Model Report for Pairing (produced using Microsoft SDL Threat Modeling Tool)
• Threat Model Report for Resource Access (produced using Microsoft SDL Threat Modeling Tool)

To see details on how to use the components, see Usage.