Networked Media Open Specifications

HOME RECS...

BCP-003-01 Securing Communications

BCP-003-02 Authorization

BCP-003-03 Certificate Provisioning

REPO INFO...

FAQ

Glossary

Implementations

WIKI

TOOLS...

API Testing Tool

CI Dashboard

IS-...

IS-04 Discovery & Registration

IS-05 Connection Management

IS-06 Network Control

IS-07 Event & Tally

IS-08 Audio Channel Mapping

IS-09 System Parameters

IS-10 Authorization

BCP-...

BCP-002 Grouping

BCP-002-01 Natural Grouping

BCP-003 API Security

BCP-003-01 Secure Communications

BCP-003-02 Authorization Practice

BCP-003-03 Certificate Provisioning

BCP-004-01 Receiver Capabilities

MORE...

General NMOS Documentation

MS-04 Identity & Timing Model

Parameter Registers

SEARCH

AMWA BCP-003 Security recommendations for NMOS APIs

About the BCP-003 Recommendations

What do the recommendations do?

• Document best practice and recommendations for securing AMWA NMOS APIs.

Why do they matter?

• A secure control plane is essential.
• These recommendations allow interoperability using widely adopted open technologies.

What are the recommendations?

• BCP-003-01 recommends securing API communication using TLS 1.2 or better.
• BCP-003-02 recommends using OAuth 2.0 authorisation using JWT, as per IS-10.
• BCP-003-03 recommends using Enrollment over Secure Transport for certificate provisioning.

---

Documentation for branch v1.0-dev

• Overview

---

The formal specification is provided in this GitHub repository. These pages render the documentation and APIs (which are specified in RAML and JSON Schema).

Repository	Default Branch	Lint (default)	Render (all)
nmos-api-security	v1.0-dev

Documentation built at 11:34:06 UTC on 2021-02-23.
(c) AMWA 2021. RAML/JSON licensed under Apache 2.0. Documentation licensed under CC BY-ND 4.0.