RFC 4422
Simple Authentication and Security Layer (SASL), June 2006
- File formats:
- Status:
- PROPOSED STANDARD
- Obsoletes:
- RFC 2222
- Authors:
- A. Melnikov, Ed.
K. Zeilenga, Ed. - Stream:
- IETF
- Source:
- sasl (sec)
Cite this RFC: TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC4422
Discuss this RFC: Send questions or comments to the mailing list kitten@ietf.org
Other actions: Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 4422
Abstract
The Simple Authentication and Security Layer (SASL) is a framework for providing authentication and data security services in connection-oriented protocols via replaceable mechanisms. It provides a structured interface between protocols and mechanisms. The resulting framework allows new protocols to reuse existing mechanisms and allows old protocols to make use of new mechanisms. The framework also provides a protocol for securing subsequent protocol exchanges within a data security layer.
This document describes how a SASL mechanism is structured, describes how protocols include support for SASL, and defines the protocol for carrying a data security layer over a connection. In addition, this document defines one SASL mechanism, the EXTERNAL mechanism.
This document obsoletes RFC 2222. [STANDARDS-TRACK]
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.