A Simple Authentication and Security Layer and Generic Security Service Application Program Interface Mechanism for OpenID
RFC 6616, “A Simple Authentication and Security Layer and Generic Security Service Application Program Interface Mechanism for OpenID”, is a Proposed Standard document published in May 2012 by E. Lear, H. Tschofenig, H. Mauldin, S. Josefsson. The canonical text is published by the RFC Editor.
Abstract
OpenID has found its usage on the Internet for Web Single Sign-On. Simple Authentication and Security Layer (SASL) and the Generic Security Service Application Program Interface (GSS-API) are application frameworks to generalize authentication. This memo specifies a SASL and GSS-API mechanism for OpenID that allows the integration of existing OpenID Identity Providers with applications using SASL and GSS-API. [STANDARDS-TRACK]
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 6616 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 6615 Definitions of Managed Objects for IP Flow Information Export
- RFC 6617 Secure Pre-Shared Key Authentication for the Internet Key Exchange Protocol
- RFC 6614 Transport Layer Security Encryption for RADIUS
- RFC 6618 Mobile IPv6 Security Framework Using Transport Layer Security for Communication between the Mobile Node and Home Agent
- RFC 6613 RADIUS over TCP
- RFC 6619 Scalable Operation of Address Translators with Per-Interface Bindings
- RFC 6612 Interactions between Proxy Mobile IPv6 and Mobile IPv6 : Scenarios and Related Issues
- RFC 6620 FCFS SAVI: First-Come, First-Served Source Address Validation Improvement for Locally Assigned IPv6 Addresses