HTTP Digest Access Authentication
RFC 7616, “HTTP Digest Access Authentication”, is a Proposed Standard document published in September 2015 by R. Shekh-Yusef, D. Ahrens, S. Bremer. It obsoletes RFC 2617. The canonical text is published by the RFC Editor.
Abstract
The Hypertext Transfer Protocol (HTTP) provides a simple challenge- response authentication mechanism that may be used by a server to challenge a client request and by a client to provide authentication information. This document defines the HTTP Digest Authentication scheme that can be used with the HTTP authentication mechanism.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 7616 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 7615 HTTP Authentication-Info and Proxy-Authentication-Info Response Header Fields
- RFC 7617 The 'Basic' HTTP Authentication Scheme
- RFC 7614 Explicit Subscriptions for the REFER Method
- RFC 7618 Dynamic Allocation of Shared IPv4 Addresses
- RFC 7613 Preparation, Enforcement, and Comparison of Internationalized Strings Representing Usernames and Passwords
- RFC 7619 The NULL Authentication Method in the Internet Key Exchange Protocol Version 2
- RFC 7612 Lightweight Directory Access Protocol : Schema for Printer Services
- RFC 7620 Scenarios with Host Identification Complications