Advanced Message Queuing Protocol (AMQP).Application Configuration Access Protocol.Īs of 2012 protocols currently supporting SASL include: A protocol has a service name such as "ldap" in a registry shared with GSSAPI and Kerberos. BROWSERID-AES128 for Mozilla Persona authentication EAP-AES128 for GSS EAP authentication GateKeeper (& GateKeeperPassport) a challenge-response mechanism developed by Microsoft for MSN Chat OAUTHBEARER OAuth 2.0 bearer tokens (RFC 6750), communicated through TLS OAUTH10A OAuth 1.0a message-authentication-code tokens (RFC 5849, Section 3.4.2) SASL-aware application protocols Īpplication protocols define their representation of SASL exchanges with a profile. GSSAPI for Kerberos V5 authentication via the GSSAPI. SCRAM (RFC 5802), modern challenge-response scheme based mechanism with channel binding support NTLM an NT LAN Manager authentication mechanism GS2- family of mechanisms supports arbitrary GSS-API mechanisms in SASL. DIGEST-MD5 offered a data security layer. DIGEST-MD5 (historic ), partially HTTP Digest compatible challenge-response scheme based upon MD5. CRAM-MD5 a simple challenge-response scheme based on HMAC-MD5. Xchat azure sasl password#Defined SASL mechanisms include:ĮXTERNAL where authentication is implicit in the context (e.g., for protocols already using IPsec or TLS) ANONYMOUS for unauthenticated guest access PLAIN a simple cleartext password mechanism, defined in RFC 4616 OTP a one-time password mechanism. Xchat azure sasl series#SASL, as defined by RFC 4422 is an IETF Standard Track protocol and is, as of 2006, a Proposed Standard.Ī SASL mechanism implements a series of challenges and responses. In 2006, that document was replaced by RFC 4422 authored by Alexey Melnikov and Kurt D. John Gardiner Myers wrote the original SASL specification (RFC 2222) in 1997. Application protocols that support SASL typically also support Transport Layer Security (TLS) to complement the services offered by SASL. DIGEST-MD5 provides an example of mechanisms which can provide a data-security layer. They can also provide a data security layer offering data integrity and data confidentiality services. Authentication mechanisms can also support proxy authorization, a facility allowing one user to assume the identity of another. It decouples authentication mechanisms from application protocols, in theory allowing any authentication mechanism supported by SASL to be used in any application protocol that uses SASL. Simple Authentication and Security Layer ( SASL) is a framework for authentication and data security in Internet protocols. Framework for authentication and data security in Internet protocols
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |