RFCs and drafts¶
RFC 1939#page-15 - Post Office Protocol - Version 3 (APOP/sasl_checkapop)
RFC 2444 - The One-Time-Password SASL Mechanism (OTP)
RFC 2808 - The SecurID(r) SASL Mechanism
RFC 4120 - The Kerberos Network Authentication Service (V5)
RFC 4178 - The Simple and Protected GSS-API Negotiation (SPNEGO) mechanism
RFC 4422 - Simple Authentication and Security Layer (SASL)
RFC 4505 - Anonymous Simple Authentication and Security Layer (SASL) Mechanism
RFC 4616 - The PLAIN Simple Authentication and Security Layer (SASL) Mechanism
RFC 4752 - The Kerberos V5 (“GSSAPI”) Simple Authentication and Security Layer (SASL) Mechanism
RFC 4846#section-4 - Base64 Data Encoding
RFC 5801 - Using Generic Security Service Application Program Interface (GSS-API) Mechanisms in SASL: The GS2 Mechanism Family
RFC 5802 - Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms
RFC 5803 - Lightweight Directory Access Protocol (LDAP) Schema for Storing Salted: Challenge Response Authentication Mechanism (SCRAM) Secrets
RFC 5929 - Channel Bindings for TLS
RFC 7613 - Preparation, Enforcement, and Comparison of Internationalized Strings Representing Usernames and Passwords
RFC 7677 - SCRAM-SHA-256 and SCRAM-SHA-256-PLUS: Simple Authentication and Security Layer (SASL) Mechanisms
RFC 7804 - Salted Challenge Response HTTP Authentication Mechanism
draft-burdis-cat-srp-sasl - Secure Remote Password SASL Mechanism (SRP)
draft-newman-sasl-c-api - The SASL C API
draft-newman-sasl-passdss - DSS Secured Password Authentication Mechanism (PASSDSS)