Networked Media Open Specifications

DOCS

Docs for v1.0.0

Authorization Practice

VERSIONS

Branches

v1.0.x

Releases

v1.0.0

IS

Interface Specifications

IS-04: Discovery & Registration

IS-05: Device Connection Management

IS-07: Event & Tally

IS-08: Audio Channel Mapping

IS-09: System Parameters

IS-10: Authorization

IS-11: Stream Compatibility Management

IS-12: Control Protocol

IS-13: Annotation

BCP

Best Common Practices

BCP-002-01: Natural Grouping

BCP-002-02: Asset Distinguishing Information

BCP-003-01: Secure Communications in NMOS Systems

BCP-003-02: Authorization in NMOS Systems

BCP-003-03: Certificate Provisioning in NMOS Systems

BCP-004-01: Receiver Capabilities

BCP-005-01: EDID to Receiver Capabilities Mapping

BCP-006-01: NMOS With JPEG XS

BCP-006-02: NMOS With H.264

BCP-006-03: NMOS With H.265

MS

Data Model Specifications

MS-04: ID & Timing Model

MS-05-01: NMOS Control Architecture

MS-05-02: AMWA NMOS Control Framework

MS-05-03: AMWA NMOS Control Block Specs

INFO

Informative Documents

INFO-002: Security Implementation Guide

INFO-003: Sink Metadata Processing Architecture

INFO-004: Implementation Guide for DNS-SD

INFO-005: Implementation Guide for NMOS Controllers

INFO-006: Implementation guide for NMOS Device Capabilities Control

REG

Parameter Registers

General Procedures and Criteria

Capabilities

Device Control Types

Device Types

Flow Attributes

Formats

Node Service Types

Sender Attributes

Source Attributes

Tags

Transports

Transport Parameters

DEVEL

Developer Links

GitHub Repo

API Testing Tool

CI Dashboard

SEARCH

BCP-003-02 ➤

AMWA BCP-003-02 Authorization in NMOS Systems

About BCP-003-02

What does it do?

• Documents best practice for an API server to accept or reject requests depending on what a client is authorized to do.

Why does it matter?

• A secure control plane is essential.
  • Authorization limits what clients can do to what is allowed.
• These recommendations allow interoperability using widely adopted open technologies.

How does it work?

• Recommends using AMWA IS-10 Authorization Specification
  • This specifies how client provides credentials and gets access tokens.
• Encryption is a prerequisite (see BCP-003-01).

---

BCP-003-02 has been developed by the Advanced Media Workflow Association as part of the Networked Media Open Specifications initiative. See here for an overview of NMOS specifications.

The NMOS Testing Tool creates a simple web service for testing implementations of all NMOS APIs.

The links to documentation, API and examples below, and for SPEC links in the page menu bar are for this release or branch: releases/v1.0.0. Links to other published releases and other live branches appear later in the page, or in the VERSIONS menu.

Documentation for release v1.0.0

• Authorization Practice

Published Releases

v1.0.0

Live Branches

v1.0.x

---

These pages are rendered from the source of the specification, which is in this GitHub repository.

Repository	Default Branch	Lint (default)	Render (all)
bcp-003-02	v1.0.x

Documentation built at 13:05:17 CDT on 2023-07-12.
(c) AMWA 2023. RAML/JSON licensed under Apache 2.0. Documentation licensed under CC BY-ND 4.0.