Resolve Against

The expression "a URI reference is resolved against a base URI" is used to describe the process of RFC 3986, Section 5.2. Noteworthy corner cases include the following: (1) if the URI reference is a (full) URI, resolving against any base URI gives the original full URI and (2) resolving an empty URI reference gives the base URI without any fragment identifier.

Resource Directory (RD)

A web entity that stores information about web resources and implements the REST interfaces defined in this specification for discovery, for the creation, maintenance, and removal of registrations, and for lookup of the registered resources.

Sector

In the context of an RD, a sector is a logical grouping of endpoints.

The abbreviation "d=" is used for the sector in query parameters for compatibility with deployed implementations.

Endpoint (EP)

Endpoint (EP) is a term used to describe a web server or client in [RFC 7252]. In the context of this specification, an endpoint is used to describe a web server that registers resources to the RD. An endpoint is identified by its endpoint name, which is included during registration, and has a unique name within the associated sector of the registration.

Registration Base URI

The base URI of a registration is a URI that typically gives scheme and authority information about an endpoint. The registration base URI is provided at registration time and is used by the RD to resolve relative references of the registration into URIs.

Target

The target of a link is the destination address (URI) of the link. It is sometimes identified with "href=" or displayed as <target>. Relative targets need resolving with respect to the base URI (Section 5.2 of RFC 3986).

This use of the term "target" is consistent with the use in [RFC 8288].

Context

The context of a link is the source address (URI) of the link and describes which resource is linked to the target. A link's context is made explicit in serialized links as the "anchor=" attribute.

This use of the term "context" is consistent with the use in [RFC 8288].

Directory Resource

A directory resource is a resource in the RD containing registration resources.

Registration Resource

A registration resource is a resource in the RD that contains information about an endpoint and its links.

Commissioning Tool (CT)

A Commissioning Tool (CT) is a device that assists during installation events by assigning values to parameters, naming endpoints and groups, or adapting the installation to the needs of the applications.

Registrant-EP

A registrant-EP is the endpoint that is registered into the RD. The registrant-EP can register itself, or a CT registers the registrant-EP.

Resource Directory Address Option (RDAO)

A Resource Directory Address Option (RDAO) is a new IPv6 Neighbor Discovery option defined for announcing an RD's address.

           +----------------------+
           |   /.well-known/core  |
           +----------------------+
                      |
                      | 1
              ////////\\\\\\\
             <    contains   >
              \\\\\\\\///////
                      |
                      | 0+
            +--------------------+
            |      link          |
            +--------------------+
                      |
                      |  1   oooooooo
                      +-----o target o
                      |      oooooooo
 oooooooooooo   0+    |
o    target  o--------+
o  attribute o        | 0+   oooooo
 oooooooooooo         +-----o rel  o
                      |      oooooo
                      |
                      | 1    ooooooooo
                      +-----o context o
                             ooooooooo

• Zero or more link relations: They describe relations between the link context and the link target. In link-format serialization, they are expressed as space-separated values in the "rel" attribute and default to "hosts".
• A link context URI: It defines the source of the relation, e.g., who "hosts" something. In link-format serialization, it is expressed in the "anchor" attribute and defaults to the Origin of the target (practically, the target with its path and later components removed).
• A link target URI: It defines the destination of the relation (e.g., what is hosted) and is the topic of all target attributes. In link-format serialization, it is expressed between angular brackets and sometimes called the "href".
• Other target attributes (e.g., resource type (rt), interface (if), or content format (ct)): These provide additional information about the target URI.

                 +--------------+
                 +      RD      +
                 +--------------+
                        | 1
                        |
                        |
                        |
                        |
                   //////\\\\
                  < contains >
                   \\\\\/////
                        |
                     0+ |
 ooooooo     1  +---------------+
o  base o-------|  registration |
 ooooooo        +---------------+
                    |       | 1
                    |       +--------------+
       oooooooo   1 |                      |
      o  href  o----+                 /////\\\\
       oooooooo     |                < contains >
                    |                 \\\\\/////
       oooooooo   1 |                      |
      o   ep   o----+                      | 0+
       oooooooo     |             +------------------+
                    |             |      link        |
       oooooooo 0-1 |             +------------------+
      o    d   o----+                      |
       oooooooo     |                      |  1   oooooooo
                    |                      +-----o target o
       oooooooo   1 |                      |      oooooooo
      o   lt   o----+     ooooooooooo   0+ |
       oooooooo     |    o  target   o-----+
                    |    o attribute o     | 0+   oooooo
    ooooooooooo 0+  |     ooooooooooo      +-----o rel  o
   o  endpoint o----+                      |      oooooo
   o attribute o                           |
    ooooooooooo                            | 1   ooooooooo
                                           +----o context o
                                                 ooooooooo

• an endpoint name ("ep", a Unicode string) unique within a sector
• a registration base URI ("base", a URI typically describing the scheme://authority part)
• a lifetime ("lt")
• a registration resource location inside the RD ("href")
• optionally, a sector ("d", a Unicode string)
• optional additional endpoint attributes (from Section 9.3)

1. It may be configured with a specific IP address for the RD. That IP address may also be an anycast address, allowing the network to forward RD requests to an RD that is topologically close; each target network environment in which some of these preconfigured nodes are to be brought up is then configured with a route for this anycast address that leads to an appropriate RD. (Instead of using an anycast address, a multicast address can also be preconfigured. The RD servers then need to configure one of their interfaces with this multicast address.)
2. It may be configured with a DNS name for the RD and use DNS to return the IP address of the RD; it can find a DNS server to perform the lookup using the usual mechanisms for finding DNS servers.
3. It may be configured to use a service discovery mechanism, such as DNS-based Service Discovery (DNS-SD), as outlined in Section 4.1.2.

1. The IPv6 Neighbor Discovery option RDAO (Section 4.1.1) can do that.
2. When DHCP is in use, this could be provided via a DHCP option (no such option is defined at the time of writing).

1. In a 6LoWPAN, just assume the 6LBR can act as an RD (using the Authoritative Border Router Option (ABRO) to find that [RFC 6775]). Confirmation can be obtained by sending a unicast GET to coap://[6LBR]/.well-known/core?rt=core.rd*.
2. In a network that supports multicast well, discover the RD using a multicast query for /.well-known/core, as specified in CoRE Link Format [RFC 6690], and send a Multicast GET to coap://[ff0x::fe]/.well-known/core?rt=core.rd*. RDs within the multicast scope will answer the query.

• In managed networks with border routers that need stand-alone operation, the RDAO is recommended (e.g., the operational phase described in Section 3.6).
• In managed networks without border routers (no Internet services available), the use of a preconfigured anycast address is recommended (e.g., the installation phase described in Section 3.6).
• In networks managed using DNS-SD, the use of DNS-SD for discovery, as described in Section 4.1.2, is recommended.

0                   1                   2                   3
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|     Type      |  Length = 3   |          Reserved             |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|                        Valid Lifetime                         |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|                                                               |
+                                                               +
|                                                               |
+                          RD Address                           +
|                                                               |
+                                                               +
|                                                               |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+

Type:

41

Length:

8-bit unsigned integer. The length of the option in units of 8 bytes. Always 3.

Reserved:

This field is unused. It MUST be initialized to zero by the sender and MUST be ignored by the receiver.

Valid Lifetime:

32-bit unsigned integer. The length of time in seconds (relative to the time the packet is received) that this RD address is valid. A value of all zero bits (0x0) indicates that this RD address is not valid anymore.

RD Address:

IPv6 address of the RD.

Interaction:

EP, CT, or Client -> RD

Method:

GET

URI Template:

/.well-known/core{?rt}

URI Template Variables:

rt :=

Resource Type. SHOULD contain one of the values "core.rd", "core.rd-lookup*", "core.rd-lookup-res", "core.rd-lookup-ep", or "core.rd*"

Accept:

absent, application/link-format, or any other media type representing web links

Success:

2.05 (Content) or 200 (OK) with an application/link-format or other web link payload containing one or more matching entries for the RD resource.

Req: GET coap://[ff02::fe]/.well-known/core?rt=core.rd*

Res: 2.05 Content
Payload:
</rd>;rt=core.rd;ct=40,
</rd-lookup/ep>;rt=core.rd-lookup-ep;ct=40,
</rd-lookup/res>;rt=core.rd-lookup-res;ct=40

Req: GET coap://[ff02::fe]/.well-known/core?rt=core.rd*

Res: 2.05 Content
Payload:
</rd>;rt=core.rd;ct=40,
</rd-lookup/res>;rt=core.rd-lookup-res;ct="40 65060 65050";obs,
</rd-lookup/ep>;rt=core.rd-lookup-ep;ct="40 65060 65050"

Req: GET /.well-known/core?rel=impl-info

Res: 2.05 Content
Payload:
<http://software.example.com/shiny-resource-directory/1.0beta1>;
    rel=impl-info

• When the (ep, d) value pair of the registration request is different from any existing registration, a new registration is generated.
• When the (ep, d) value pair of the registration request is equal to an existing registration, the content and parameters of the existing registration are replaced with the content of the registration request. As with changes to registration resources, security policies (Section 7) usually require such requests to come from the same device.

Interaction:

EP or CT -> RD

Method:

POST

URI Template:

{+rd}{?ep,d,lt,base,extra-attrs*}

URI Template Variables:

rd :=

RD registration URI (mandatory). This is the location of the RD, as obtained from discovery.

ep :=

Endpoint name (mostly mandatory). The endpoint name is an identifier that MUST be unique within a sector.

As the endpoint name is a Unicode string, it is encoded in UTF-8 (and possibly percent encoded) during variable expansion (see RFC 6570, Section 3.2.1). The endpoint name MUST NOT contain any character in the inclusive ranges 0-31 or 127-159.

The maximum length of this parameter is 63 bytes encoded in UTF-8.

If the RD is configured to recognize the endpoint that is to be authorized to use exactly one endpoint name, the RD assigns that name. In that case, giving the endpoint name becomes optional for the client; if the client gives any other endpoint name, it is not authorized to perform the registration.

d :=

Sector (optional). This is the sector to which this endpoint belongs. When this parameter is not present, the RD MAY associate the endpoint with a configured default sector (possibly based on the endpoint's authorization) or leave it empty.

The sector is encoded like the ep parameter and is limited to 63 bytes encoded in UTF-8 as well.

lt :=

Lifetime (optional). This is the lifetime of the registration in seconds, with a range of 1-4294967295. If no lifetime is included in the initial registration, a default value of 90000 (25 hours) SHOULD be assumed.

base :=

Base URI (optional). This parameter sets the base URI of the registration, under which the relative links in the payload are to be interpreted. The specified URI typically does not have a path component of its own and MUST be suitable as a base URI to resolve any relative references given in the registration. The parameter is therefore usually of the shape "scheme://authority" for HTTP and CoAP URIs. The URI SHOULD NOT have a query or fragment component, as any non-empty relative part in a reference would remove those parts from the resulting URI.

In the absence of this parameter, the scheme of the protocol, the source address, and the source port of the registration request are assumed. The base URI is consecutively constructed by concatenating the used protocol's scheme with the characters "://", the requester's source address as an address literal, and ":" followed by its port (if it was not the protocol's default one). This is analogous to the process described in RFC 7252, Section 6.5.

This parameter is mandatory when the directory is filled by a third party, such as a commissioning tool.

If the registrant-EP uses an ephemeral port to register with, it MUST include the base parameter in the registration to provide a valid network path.

A registrant that cannot be reached by potential lookup clients at the address it registers from (e.g., because it is behind some form of Network Address Translation (NAT)) MUST provide a reachable base address with its registration.

If the base URI contains a link-local IP literal, it MUST NOT contain a Zone Identifier and MUST be local to the link on which the registration request is received.

Endpoints that register with a base that contains a path component cannot efficiently express their registrations in Limited Link Format (Appendix C). Those applications should use different representations of links to which Appendix C is not applicable (e.g., [CORE-CORAL]).

extra-attrs :=

Additional registration attributes (optional). The endpoint can pass any parameter registered in Section 9.3 to the directory. If the RD is aware of the parameter's specified semantics, it processes the parameter accordingly. Otherwise, it MUST store the unknown key and its value(s) as an endpoint attribute for further lookup.

Content-Format:

application/link-format or any other indicated media type representing web links

Success:

2.01 (Created) or 201 (Created). The Location-Path option or Location header field MUST be included in the response. This location MUST be a stable identifier generated by the RD, as it is used for all subsequent operations on this registration resource. The registration resource location thus returned is for the purpose of updating the lifetime of the registration and for maintaining the content of the registered links, including updating and deleting links.

A registration with an already-registered ep and d value pair responds with the same success code and location as the original registration; the set of links registered with the endpoint is replaced with the links from the payload.

The location MUST NOT have a query or fragment component, as that could conflict with query parameters during the registration update operation. Therefore, the Location-Query option MUST NOT be present in a successful response.

Req: POST coap://rd.example.com/rd?ep=node1
Content-Format: 40
Payload:
</sensors/temp>;rt=temperature-c;if=sensor,
<http://www.example.com/sensors/temp>;
  anchor="/sensors/temp";rel=describedby

Res: 2.01 Created
Location-Path: /rd/4521

Req:
POST /rd?ep=node1&base=http://[2001:db8:1::1] HTTP/1.1
Host: rd.example.com
Content-Type: application/link-format

</sensors/temp>;rt=temperature-c;if=sensor,
<http://www.example.com/sensors/temp>;
  anchor="/sensors/temp";rel=describedby

Res:
HTTP/1.1 201 Created
Location: /rd/4521

• The registrant-EP finds one or more addresses of the directory server, as described in Section 4.1.
• The registrant-EP sends (and regularly refreshes with) a POST request to the /.well-known/rd URI of the directory server of choice. The body of the POST request is empty and triggers the resource directory server to perform GET requests (redone before lifetime expiry) at the requesting registrant-EP's /.well-known/core to obtain the link-format payload to register. The registrant-EP includes the same registration parameters in the POST request as it would with a regular registration, per Section 5. The registration base URI of the registration is taken from the registrant-EP's network address (as is default with regular registrations). The following is an example request from the registrant-EP to the RD (unanswered until the next step):

  Req: POST /.well-known/rd?lt=6000&ep=node1
  (No payload)
  

  Figure 10: First-Half Example Exchange of a Simple Registration
• The RD queries the registrant-EP's discovery resource to determine the success of the operation. It SHOULD keep a cache of the discovery resource and not query it again as long as it is fresh. The following is an example request from the RD to the registrant-EP:

  Req: GET /.well-known/core
  Accept: 40
  
  Res: 2.05 Content
  Content-Format: 40
  Payload:
  </sen/temp>
  

  Figure 11: Example Exchange of the RD Querying the Simple Endpoint

Res: 2.04 Changed

Interaction:

EP -> RD

Method:

POST

URI Template:

/.well-known/rd{?ep,d,lt,extra-attrs*}

Success:

2.04 (Changed)

Interaction:

RD -> EP

Method:

GET

URI Template:

/.well-known/core

Success:

2.05 (Content)

Interaction:

EP or CT -> RD

Method:

POST

URI Template:

{+location}{?lt,base,extra-attrs*}

URI Template Variables:

location :=

This is the location returned by the RD as a result of a successful earlier registration.

lt :=

Lifetime (optional). This is the lifetime of the registration in seconds, with a range of 1-4294967295. If no lifetime is included, the previous last lifetime set on a previous update or the original registration (falling back to 90000) SHOULD be used.

base :=

Base URI (optional). This parameter updates the base URI established in the original registration to a new value and is subject to the same restrictions as in the registration.

If the parameter is set in an update, it is stored by the RD as the new base URI under which to interpret the relative links present in the payload of the original registration.

If the parameter is not set in the request but was set before, the previous base URI value is kept unmodified.

If the parameter is not set in the request and was not set before either, the source address and source port of the update request are stored as the base URI.

extra-attrs :=

Additional registration attributes (optional). As with the registration, the RD processes them if it knows their semantics. Otherwise, unknown attributes are stored as endpoint attributes, overriding any previously stored endpoint attributes of the same key.

Note that this default behavior does not allow removing an endpoint attribute in an update. For attributes whose functionality depends on the endpoints' ability to remove them in an update, it can make sense to define a value whose presence is equivalent to the absence of a value. As an alternative, an extension can define different updating rules for their attributes. That necessitates either discovering whether the RD is aware of that extension or tolerating the default behavior.

Content-Format:

none (no payload)

Success:

2.04 (Changed) or 204 (No Content) if the update was successfully processed.

Failure:

4.04 (Not Found) or 404 (Not Found). Registration does not exist (e.g., may have been removed).

Req: POST /rd/4521

Res: 2.04 Changed

• endpoint name (ep)=endpoint1
• lifetime (lt)=500
• base URI (base)=coap://local-proxy-old.example.com
• payload of Figure 8

Req: GET /rd-lookup/res?ep=endpoint1

Res: 2.05 Content
Payload:
<coap://local-proxy-old.example.com/sensors/temp>;
    rt=temperature-c;if=sensor,
<http://www.example.com/sensors/temp>;
    anchor="coap://local-proxy-old.example.com/sensors/temp";
    rel=describedby

Req: POST /rd/4521?base=coaps://new.example.com

Res: 2.04 Changed

Req: GET /rd-lookup/res?ep=endpoint1

Res: 2.05 Content
Payload:
<coaps://new.example.com/sensors/temp>;
    rt=temperature-c;if=sensor,
<http://www.example.com/sensors/temp>;
    anchor="coaps://new.example.com/sensors/temp";
    rel=describedby

Interaction:

EP or CT -> RD

Method:

DELETE

URI Template:

{+location}

URI Template Variables:

location :=

This is the location returned by the RD as a result of a successful earlier registration.

Success:

2.02 (Deleted) or 204 (No Content) upon successful deletion.

Failure:

4.04 (Not Found) or 404 (Not Found). Registration does not exist (e.g., may already have been removed).

Req: DELETE /rd/4521

Res: 2.02 Deleted

• Send iPATCH (or PATCH) updates [RFC 8132] to add, remove, or change the links of a registration.
• Use GET to read the currently stored set of links in a registration resource.

• State counter. The RD can keep a monotonous counter that increments whenever a registration changes. For every registration resource, it stores the post-increment value of that resource's last change. Requests altering them need to have at least that value encoded in their Echo option and are otherwise rejected with a 4.01 (Unauthorized) and the current counter value as the Echo value. If other applications on the same server use Echo as well, that encoding may include a prefix indicating that it pertains to the RD's counter. The value associated with a resource needs to be kept across the removal of registrations if the same registration resource is to be reused. The counter can be reset (and the values of removed resources forgotten) when all previous security associations are reset. This is the "Persistent Counter" method of RFC 9175, Appendix A.
• Preemptive Echo values. The current state counter can be sent in an Echo option not only when requests are rejected with 4.01 (Unauthorized) but also with successful responses. Thus, clients can be provided with Echo values sufficient for their next request on a regular basis. This is also described in Section 2.3 of RFC 9175 While endpoints may discard received Echo values at leisure between requests, they are encouraged to retain these values for the next request to avoid additional round trips.
• If the RD can ensure that only one security association has modifying access to any registration at any given time and that security association provides order on the requests, that order is sufficient to show request freshness.

Interaction:

Client -> RD

Method:

GET

URI Template:

{+type-lookup-location}{?page,count,search*}

URI Template Variables:

type-lookup-location :=

RD lookup URI for a given lookup type (mandatory). The address is discovered as described in Section 4.3.

search :=

Search criteria for limiting the number of results (optional). The search criteria are an associative array, expressed in a form-style query, as per the URI Template (see [RFC 6570], Sections 2.4.2 and 3.2.8).

page :=

Page (optional). This parameter cannot be used without the count parameter. Results are returned from result set in pages that contain 'count' links starting from index (page * count). Page numbering starts with zero.

count :=

Count (optional). The number of results is limited to this parameter value. If the page parameter is also present, the response MUST only include 'count' links starting with the (page * count) link in the result set from the query. If the count parameter is not present, then the response MUST return all matching links in the result set. Link numbering starts with zero.

Accept:

absent, application/link-format, or any other indicated media type representing web links

Success:

2.05 (Content) or 200 (OK) with an application/link-format or other web link payload containing matching entries for the lookup.

The payload can contain zero links (which is an empty payload in the link format described in [RFC 6690] but could also be [] in JSON-based formats), indicating that no entities matched the request.

• If the client's credentials indicate any subject name that is certified by any authority that the RD recognizes (which may be the system's trust anchor store), all such subject names are stored. With credentials based on CWT or JWT (as common with Authentication and Authorization for Constrained Environments (ACE)), the Subject (sub) claim is stored as a single name, if it exists. With X.509 certificates, the Common Name (CN) and the complete list of SubjectAltName entries are stored. In both cases, the authority that certified the claim is stored along with the subject, as the latter may only be locally unique.
• Otherwise, if the client proves possession of a private key, the matching public key is stored. This applies both to raw public keys and to the public keys indicated in certificates that failed the above authority check.
• If neither is present, a reference to the security session itself is stored. With (D)TLS, that is the connection itself or the session resumption information, if available. With OSCORE, that is the security context.

• When alterations to registration attributes are reordered, an attacker may create any combination of attributes ever set, with the attack difficulty determined by the security layer's replay properties. For example, if Figure 18 were conducted without freshness assurances, an attacker could later reset the lifetime back to 7200. Thus, the device is made unreachable to lookup clients.
• When registration updates without query parameters (which just serve to restart the lifetime) can be reordered, an attacker can use intercepted messages to give the appearance of the device being alive to the RD. This is unacceptable when the RD's security policy promises reachability of endpoints (e.g., when disappearing devices would trigger further investigation) but may be acceptable with other policies.

• the human-readable name of the parameter,
• the short name, as used in query parameters or target attributes,
• syntax and validity requirements (if any),
• indication of whether it can be passed as a query parameter at registration of endpoints, passed as a query parameter in lookups, or expressed as a target attribute,
• a description, and
• a link to reference documentation.

Short:

Short name used in query parameters or target attributes

Validity:

Unicode* =

up to 63 bytes of UTF-8-encoded Unicode, with no control characters as per Section 5

Use:

R =

used at registration

L =

used at lookup

A =

expressed in the target attribute

• The values MUST be related to the purpose described in Section 9.3.1.
• The registered values MUST conform to the ABNF reg-rel-type definition of [RFC 6690] and MUST NOT be a URI.
• It is recommended to use the period "." character for segmentation.

IPv4

-- "All CoRE Resource Directories" address 224.0.1.190, in the "Internetwork Control Block (224.0.1.0 - 224.0.1.255 (224.0.1/24))" subregistry within the "IPv4 Multicast Address Space Registry". As the address is used for discovery that may span beyond a single network, it has come from the Internetwork Control Block (224.0.1.x) [RFC 5771].

IPv6

-- "All CoRE Resource Directories" address ff0x::fe, in the "Variable Scope Multicast Addresses" subregistry within the "IPv6 Multicast Address Space Registry" [RFC 3307]. Note that there is a distinct multicast address for each scope that interested CoAP nodes should listen to; CoAP needs the link-local and site-local scopes only.

[RFC2119]

S. Bradner, "Key words for use in RFCs to Indicate Requirement Levels", BCP 14, RFC 2119, DOI 10.17487/RFC2119, March 1997,
<https://www.rfc-editor.org/info/rfc2119>.

[RFC3986]

T. Berners-Lee, R. Fielding, and L. Masinter, "Uniform Resource Identifier (URI): Generic Syntax", STD 66, RFC 3986, DOI 10.17487/RFC3986, January 2005,
<https://www.rfc-editor.org/info/rfc3986>.

[RFC6570]

J. Gregorio, R. Fielding, M. Hadley, M. Nottingham, and D. Orchard, "URI Template", RFC 6570, DOI 10.17487/RFC6570, March 2012,
<https://www.rfc-editor.org/info/rfc6570>.

[RFC6690]

Z. Shelby, "Constrained RESTful Environments (CoRE) Link Format", RFC 6690, DOI 10.17487/RFC6690, August 2012,
<https://www.rfc-editor.org/info/rfc6690>.

[RFC6763]

S. Cheshire, and M. Krochmal, "DNS-Based Service Discovery", RFC 6763, DOI 10.17487/RFC6763, February 2013,
<https://www.rfc-editor.org/info/rfc6763>.

[RFC7230]

R. Fielding, and J. Reschke, "Hypertext Transfer Protocol (HTTP/1.1): Message Syntax and Routing", RFC 7230, DOI 10.17487/RFC7230, June 2014,
<https://www.rfc-editor.org/info/rfc7230>.

[RFC7252]

Z. Shelby, K. Hartke, and C. Bormann, "The Constrained Application Protocol (CoAP)", RFC 7252, DOI 10.17487/RFC7252, June 2014,
<https://www.rfc-editor.org/info/rfc7252>.

[RFC8126]

M. Cotton, B. Leiba, and T. Narten, "Guidelines for Writing an IANA Considerations Section in RFCs", BCP 26, RFC 8126, DOI 10.17487/RFC8126, June 2017,
<https://www.rfc-editor.org/info/rfc8126>.

[RFC8174]

B. Leiba, "Ambiguity of Uppercase vs Lowercase in RFC 2119 Key Words", BCP 14, RFC 8174, DOI 10.17487/RFC8174, May 2017,
<https://www.rfc-editor.org/info/rfc8174>.

[RFC8288]

M. Nottingham, "Web Linking", RFC 8288, DOI 10.17487/RFC8288, October 2017,
<https://www.rfc-editor.org/info/rfc8288>.

[RFC9175]

C. Amsüss, J. Preuß Mattsson, and G. Selander, "Constrained Application Protocol (CoAP): Echo, Request-Tag, and Token Processing", RFC 9175, DOI 10.17487/RFC9175, February 2022,
<https://www.rfc-editor.org/info/rfc9175>.

[ACE-OAUTH-AUTHZ]

Arm Ltd., L. Seitz, G. Selander, E. Wahlstroem, S. Erdtman, and H. Tschofenig, "Authentication and Authorization for Constrained Environments (ACE) using the OAuth 2.0 Framework (ACE-OAuth)", Internet-Draft draft-ietf-ace-oauth-authz-46, November 2021,
<https://datatracker.ietf.org/doc/html/draft-ietf-ace-oauth-authz-46>.

[COAP-PROT-NEG]

Ericsson, , and , "CoAP Protocol Negotiation", Internet-Draft draft-silverajan-core-coap-protocol-negotiation-09, July 2018,
<https://datatracker.ietf.org/doc/html/draft-silverajan-core-coap-protocol-negotiation-09>.

[CORE-CORAL]

ARM, , and , "The Constrained RESTful Application Language (CoRAL)", Internet-Draft draft-ietf-core-coral-05, March 2022,
<https://datatracker.ietf.org/doc/html/draft-ietf-core-coral-05>.

[CORE-LINKS-JSON]

K Li, A Rahman, and C Bormann, "Representing Constrained RESTful Environments (CoRE) Link Format in JSON and CBOR", Internet-Draft draft-ietf-core-links-json-10, February 2018,
<https://datatracker.ietf.org/doc/html/draft-ietf-core-links-json-10>.

[CORE-RD-DNS-SD]

P van der Stok, M Koster, and C Amsuess, "CoRE Resource Directory: DNS-SD mapping", Internet-Draft draft-ietf-core-rd-dns-sd-05, July 2019,
<https://datatracker.ietf.org/doc/html/draft-ietf-core-rd-dns-sd-05>.

[ER]

P. Chen, "The entity-relationship model--toward a unified view of data", DOI 10.1145/320434.320440, March 1976,
<https://doi.org/10.1145/320434.320440>.

[LwM2M]

Open Mobile Alliance, "Lightweight Machine to Machine Technical Specification: Transport Bindings (Candidate Version 1.1)", June 2018,
<https://openmobilealliance.org/RELEASE/LightweightM2M/V1_1-20180612-C/OMA-TS-LightweightM2M_Transport-V1_1-20180612-C.pdf>.

[RFC3306]

B. Haberman, and D. Thaler, "Unicast-Prefix-based IPv6 Multicast Addresses", RFC 3306, DOI 10.17487/RFC3306, August 2002,
<https://www.rfc-editor.org/info/rfc3306>.

[RFC3307]

B. Haberman, "Allocation Guidelines for IPv6 Multicast Addresses", RFC 3307, DOI 10.17487/RFC3307, August 2002,
<https://www.rfc-editor.org/info/rfc3307>.

[RFC3849]

G. Huston, A. Lord, and P. Smith, "IPv6 Address Prefix Reserved for Documentation", RFC 3849, DOI 10.17487/RFC3849, July 2004,
<https://www.rfc-editor.org/info/rfc3849>.

[RFC4122]

P. Leach, M. Mealling, and R. Salz, "A Universally Unique IDentifier (UUID) URN Namespace", RFC 4122, DOI 10.17487/RFC4122, July 2005,
<https://www.rfc-editor.org/info/rfc4122>.

[RFC4944]

G. Montenegro, N. Kushalnagar, J. Hui, and D. Culler, "Transmission of IPv6 Packets over IEEE 802.15.4 Networks", RFC 4944, DOI 10.17487/RFC4944, September 2007,
<https://www.rfc-editor.org/info/rfc4944>.

[RFC5771]

M. Cotton, L. Vegoda, and D. Meyer, "IANA Guidelines for IPv4 Multicast Address Assignments", BCP 51, RFC 5771, DOI 10.17487/RFC5771, March 2010,
<https://www.rfc-editor.org/info/rfc5771>.

[RFC6724]

D. Thaler, R. Draves, A. Matsumoto, and T. Chown, "Default Address Selection for Internet Protocol Version 6 (IPv6)", RFC 6724, DOI 10.17487/RFC6724, September 2012,
<https://www.rfc-editor.org/info/rfc6724>.

[RFC6775]

Z. Shelby, S. Chakrabarti, E. Nordmark, and C. Bormann, "Neighbor Discovery Optimization for IPv6 over Low-Power Wireless Personal Area Networks (6LoWPANs)", RFC 6775, DOI 10.17487/RFC6775, November 2012,
<https://www.rfc-editor.org/info/rfc6775>.

[RFC6874]

B. Carpenter, S. Cheshire, and R. Hinden, "Representing IPv6 Zone Identifiers in Address Literals and Uniform Resource Identifiers", RFC 6874, DOI 10.17487/RFC6874, February 2013,
<https://www.rfc-editor.org/info/rfc6874>.

[RFC7228]

C. Bormann, M. Ersue, and A. Keranen, "Terminology for Constrained-Node Networks", RFC 7228, DOI 10.17487/RFC7228, May 2014,
<https://www.rfc-editor.org/info/rfc7228>.

[RFC7641]

K. Hartke, "Observing Resources in the Constrained Application Protocol (CoAP)", RFC 7641, DOI 10.17487/RFC7641, September 2015,
<https://www.rfc-editor.org/info/rfc7641>.

[RFC8106]

J. Jeong, S. Park, L. Beloeil, and S. Madanapalli, "IPv6 Router Advertisement Options for DNS Configuration", RFC 8106, DOI 10.17487/RFC8106, March 2017,
<https://www.rfc-editor.org/info/rfc8106>.

[RFC8132]

P. van der Stok, C. Bormann, and A. Sehgal, "PATCH and FETCH Methods for the Constrained Application Protocol (CoAP)", RFC 8132, DOI 10.17487/RFC8132, April 2017,
<https://www.rfc-editor.org/info/rfc8132>.

[RFC8141]

P. Saint-Andre, and J. Klensin, "Uniform Resource Names (URNs)", RFC 8141, DOI 10.17487/RFC8141, April 2017,
<https://www.rfc-editor.org/info/rfc8141>.

[RFC8613]

G. Selander, J. Mattsson, F. Palombini, and L. Seitz, "Object Security for Constrained RESTful Environments (OSCORE)", RFC 8613, DOI 10.17487/RFC8613, July 2019,
<https://www.rfc-editor.org/info/rfc8613>.

[T2TRG-REL-IMPL]

Universität Bremen TZI, , "impl-info: A link relation type for disclosing implementation information", Internet-Draft draft-bormann-t2trg-rel-impl-02, September 2020,
<https://datatracker.ietf.org/doc/html/draft-bormann-t2trg-rel-impl-02>.

• "Default value of anchor": Under both [RFC 6690] and [RFC 8288], relative references in the term inside the angle brackets (the target) and the anchor attribute are resolved against the relevant base URI (which usually is the URI used to retrieve the entity) and independent of each other. When, in a Link header [RFC 8288], the anchor attribute is absent, the link's context is the URI of the selected representation (and usually equal to the base URI). In links per [RFC 6690], if the anchor attribute is absent, the default value is the Origin of (for all relevant cases, the URI reference / resolved against) the link's target.
• There is no percent encoding in link-format documents. A link-format document is a UTF-8-encoded string of Unicode characters and does not have percent encoding, while Link header fields are practically ASCII strings that use percent encoding for non-ASCII characters, stating the encoding explicitly when required. For example, while a Link header field in a page about a Swedish city might read:

  Link: </temperature/Malm%C3%B6>;rel=live-environment-data
  

  a link-format document from the same source might describe the link as:

  </temperature/Malmö>;rel=live-environment-data
  

Christian Amsüss

Zach Shelby

Michael Koster

Carsten Bormann

Peter van der Stok