UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

IETF RFC 4422

Simple Authentication and Security Layer (SASL)

active, Most Current
Buy Now
Organization: IETF
Publication Date: 1 June 2006
Status: active
Page Count: 33
scope:

The Simple Authentication and Security Layer (SASL) is a framework for providing authentication and data security services in connection-oriented protocols via replaceable mechanisms. It provides a structured interface between protocols and mechanisms. The resulting framework allows new protocols to reuse existing mechanisms and allows old protocols to make use of new mechanisms. The framework also provides a protocol for securing subsequent protocol exchanges within a data security layer.

This document describes how a SASL mechanism is structured, describes how protocols include support for SASL, and defines the protocol for carrying a data security layer over a connection. In addition, this document defines one SASL mechanism, the EXTERNAL mechanism.

This document obsoletes RFC 2222.

Document History

IETF RFC 4422
June 1, 2006
Simple Authentication and Security Layer (SASL)
The Simple Authentication and Security Layer (SASL) is a framework for providing authentication and data security services in connection-oriented protocols via replaceable mechanisms. It provides a...

References

This document references:
IETF RFC 2244 - ACAP - Application Configuration Access Protocol
Published by IETF on November 1, 1997
The Application Configuration Access Protocol (ACAP) is designed to support remote storage and access of program option, configuration and preference information. The data store model is designed to...
This document references:
RFC 2743 - Generic Security Service Application Program Interface Version 2, Update 1
Published by IETF on January 1, 2000
A description is not available for this item.
This document references:
IETF RFC 3206 - The SYS and AUTH POP Response Codes
Published by IETF on February 1, 2002
This memo proposes two response codes: SYS and AUTH, which enable clients to unambiguously determine an optimal response to an authentication failure. In addition, a new capability (AUTH-RESPCODE) is...
This document references:
IETF RFC 3454 - Preparation of Internationalized Strings ("stringprep")
Published by IETF on December 1, 2002
This document describes a framework for preparing Unicode text strings in order to increase the likelihood that string input and string comparison work in ways that make sense for typical users...
This document references:
IETF RFC 3629 - UTF-8, a transformation format of ISO 10646
Published by IETF on November 1, 2003
A description is not available for this item.
This document is referenced by:
IETF RFC 6616 - A Simple Authentication and Security Layer (SASL) and Generic Security Service Application Program Interface (GSS-API) Mechanism for OpenID
Published by IETF on May 1, 2012
OpenID has found its usage on the Internet for Web Single Sign-On. Simple Authentication and Security Layer (SASL) and the Generic Security Service Application Program Interface (GSS-API) are...
This document is referenced by:
IETF RFC 4978 - The IMAP COMPRESS Extension
Published by IETF on August 1, 2007
The COMPRESS extension allows an IMAP connection to be effectively and efficiently compressed.
This document is referenced by:
TS 102 232-2 - Lawful Interception (LI); Handover Interface and Service-Specific Details (SSD) for IP delivery; Part 2: Service-specific details for messaging services
Published by ETSI on March 1, 2023
The present document contains a stage 1 like description of the interception information in relation to the process of sending and receiving asynchronous messages. The present document also contains...
This document is referenced by:
IETF RFC 6710 - Simple Mail Transfer Protocol Extension for Message Transfer Priorities
Published by IETF on August 1, 2012
This memo defines an extension to the SMTP (Simple Mail Transfer Protocol) service whereby messages are given a label to indicate preferential handling, to enable mail handling nodes to take this...
This document is referenced by:
IETF RFC 6876 - A Posture Transport Protocol over TLS (PT-TLS)
Published by IETF on February 1, 2013
This document specifies PT-TLS, a TLS-based Posture Transport (PT) protocol. The PT-TLS protocol carries the Network Endpoint Assessment (NEA) message exchange under the protection of a Transport...
View Less
View All
Advertisement