An Extension to HTTP : Digest Access Authentication
RFC 2069, “An Extension to HTTP : Digest Access Authentication”, is a Proposed Standard document published in January 1997 by J. Franks, P. Hallam-Baker, J. Hostetler, P. Leach, A. Luotonen, E. Sink, L. Stewart. It has been obsoleted by RFC 2617 — refer to the newer document for the authoritative version. The canonical text is published by the RFC Editor.
Abstract
The protocol referred to as "HTTP/1.0" includes the specification for a Basic Access Authentication scheme. This scheme is not considered to be a secure method of user authentication, as the user name and password are passed over the network as clear text. A specification for a different authentication scheme is needed to address this severe limitation. This document provides specification for such a scheme, referred to as "Digest Access Authentication". [STANDARDS-TRACK]
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 2069 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 2068 Hypertext Transfer Protocol -- HTTP/1.1
- RFC 2070 Internationalization of the Hypertext Markup Language
- RFC 2067 IP over HIPPI
- RFC 2071 Network Renumbering Overview: Why would I want it and what is it anyway?
- RFC 2066 TELNET CHARSET Option
- RFC 2072 Router Renumbering Guide
- RFC 2065 Domain Name System Security Extensions
- RFC 2073 An IPv6 Provider-Based Unicast Address Format