Merge pull request oauth-wg#86 from oauth-wg/privacy-changes

Addressed privacy changes identified by Yaron
gffletch · Mar 29, 2024 · cb64104 · cb64104
2 parents c3daba2 + 3553120
commit cb64104
Showing 1 changed file with 4 additions and 1 deletion.
diff --git a/draft-ietf-oauth-transaction-tokens.md b/draft-ietf-oauth-transaction-tokens.md
@@ -535,7 +535,10 @@ How requesting clients authenticate to the Transaction Token Service is out of s
 Some `rctx` claims may be considered personal information in some jurisdictions
 and if so their values need to be obsfucated. For example, originating IP address
 (`req_ip`) is often considerd personal information and in that case must be
-protected through some obsfucation method (e.g. SHA256).
+protected through some obsfucation method (e.g. salted SHA256).
+
+## Logging
+Txn-Tokens SHOULD NOT be logged if they contain Personally Identifiable Information (PII). What constitutes PII depends upon the use case, but in some cases even an email address (which could be a `sub` value) can be protected PII, which should not be logged.
 
 # IANA Considerations {#IANA}