Dismiss
InnovationQ will be updated on Sunday, Oct. 22, from 10am ET - noon. You may experience brief service interruptions during that time.
Browse Prior Art Database

Generic Security Service Application Program Interface Version 2, Update 1 (RFC2743)

IP.com Disclosure Number: IPCOM000003340D
Original Publication Date: 2000-Jan-01
Included in the Prior Art Database: 2000-Sep-13

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

J. Linn: AUTHOR

Abstract

The Generic Security Service Application Program Interface (GSS-API), Version 2, as defined in [RFC-2078], provides security services to callers in a generic fashion, supportable with a range of underlying mechanisms and technologies and hence allowing source-level portability of applications to different environments. This specification defines GSS-API services and primitives at a level independent of underlying mechanism and programming language environment, and is to be complemented by other, related specifications:

This text was extracted from a ASCII document.
This is the abbreviated version, containing approximately 1% of the total text.

Network Working Group J. Linn

Request for Comments: 2743 RSA Laboratories

Obsoletes: 2078 January 2000

Category: Standards Track

Generic Security Service Application Program Interface

Version 2, Update 1

Status of this Memo

This document specifies an Internet standards track protocol for the

Internet community, and requests discussion and suggestions for

improvements. Please refer to the current edition of the "Internet

Official Protocol Standards" (STD 1) for the standardization state

and status of this protocol. Distribution of this memo is unlimited.

Copyright Notice

Copyright (C) The Internet Society (2000). All Rights Reserved.

Abstract

The Generic Security Service Application Program Interface (GSS-API),

Version 2, as defined in [RFC-2078], provides security services to

callers in a generic fashion, supportable with a range of underlying

mechanisms and technologies and hence allowing source-level

portability of applications to different environments. This

specification defines GSS-API services and primitives at a level

independent of underlying mechanism and programming language

environment, and is to be complemented by other, related

specifications:

documents defining specific parameter bindings for particular

language environments

documents defining token formats, protocols, and procedures to be

implemented in order to realize GSS-API services atop particular

security mechanisms

This memo obsoletes [RFC-2078], making specific, incremental changes

in response to implementation experience and liaison requests. It is

intended, therefore, that this memo or a successor version thereto

will become the basis for subsequent progression of the GSS-API

specification on the standards track.

TABLE OF CONTENTS

1: GSS-API Characteristics and Concepts . . . . . . . . . . . . 4

1.1: GSS-API Constructs . . . . . . . . . . . . . . . . . . . . 6

1.1.1: Credentials . . . . . . . . . . . . . . . . . . . . . . 6

1.1.1.1: Credential Constructs and Concepts . . . . . . . . . . 6

1.1.1.2: Credential Management . . . . . . . . . . . . . . . . 7

1.1.1.3: Default Credential Resolution . . . . . . . . . . . . 8

1.1.2: Tokens . . . . . . . . . . . . . . . . . . . . . . . . . 9

1.1.3: Security Contexts . . . . . . . . . . . . . . . . . . . 11

1.1.4: Mechanism Types . . . . . . . . . . . . . . . . . . . . 12

1.1.5: Naming . . . . . . . . . . . . . . . . . . . . . . . . 13

1.1.6: ...