RFCs and drafts

  • RFC 1939#page-15 - Post Office Protocol - Version 3 (APOP/sasl_checkapop)

  • RFC 2444 - The One-Time-Password SASL Mechanism (OTP)

  • RFC 2808 - The SecurID(r) SASL Mechanism

  • RFC 4120 - The Kerberos Network Authentication Service (V5)

  • RFC 4178 - The Simple and Protected GSS-API Negotiation (SPNEGO) mechanism

  • RFC 4422 - Simple Authentication and Security Layer (SASL)

  • RFC 4505 - Anonymous Simple Authentication and Security Layer (SASL) Mechanism

  • RFC 4616 - The PLAIN Simple Authentication and Security Layer (SASL) Mechanism

  • RFC 4752 - The Kerberos V5 (“GSSAPI”) Simple Authentication and Security Layer (SASL) Mechanism

  • RFC 4846#section-4 - Base64 Data Encoding

  • RFC 5801 - Using Generic Security Service Application Program Interface (GSS-API) Mechanisms in SASL: The GS2 Mechanism Family

  • RFC 5802 - Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms

  • RFC 5803 - Lightweight Directory Access Protocol (LDAP) Schema for Storing Salted: Challenge Response Authentication Mechanism (SCRAM) Secrets

  • RFC 5929 - Channel Bindings for TLS

  • RFC 7613 - Preparation, Enforcement, and Comparison of Internationalized Strings Representing Usernames and Passwords

  • RFC 7677 - SCRAM-SHA-256 and SCRAM-SHA-256-PLUS: Simple Authentication and Security Layer (SASL) Mechanisms

  • RFC 7804 - Salted Challenge Response HTTP Authentication Mechanism

  • draft-burdis-cat-srp-sasl - Secure Remote Password SASL Mechanism (SRP)

  • draft-newman-sasl-c-api - The SASL C API

  • draft-newman-sasl-passdss - DSS Secured Password Authentication Mechanism (PASSDSS)