database logo graphic

RFC 5878

"Transport Layer Security (TLS) Authorization Extensions", May 2010

Canonical URL:
http://www.rfc-editor.org/rfc/rfc5878.txt
This document is also available in this non-normative format: PDF.
Status:
EXPERIMENTAL
Updates:
RFC 5246
Authors:
M. Brown
R. Housley
Stream:
IETF
Source:
NON WORKING GROUP

Cite this RFC: TXT  |  XML

Other actions: Find Errata (if any)  |  Submit Errata  |  Find IPR Disclosures from the IETF


Abstract

This document specifies authorization extensions to the Transport Layer Security (TLS) Handshake Protocol. Extensions are carried in the client and server hello messages to confirm that both parties support the desired authorization data types. Then, if supported by both the client and the server, authorization information, such as attribute certificates (ACs) or Security Assertion Markup Language (SAML) assertions, is exchanged in the supplemental data handshake message. This document defines an Experimental Protocol for the Internet community.


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 4844.


Go to the RFC Editor Homepage.