Browse Prior Art Database

SASLprep: Stringprep Profile for User Names and Passwords (RFC4013)

IP.com Disclosure Number: IPCOM000075938D
Original Publication Date: 2005-Feb-01
Included in the Prior Art Database: 2005-Feb-24
Document File: 7 page(s) / 13K

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

K. Zeilenga: AUTHOR

Abstract

This document describes how to prepare Unicode strings representing user names and passwords for comparison. The document defines the "SASLprep" profile of the "stringprep" algorithm to be used for both user names and passwords. This profile is intended to be used by Simple Authentication and Security Layer (SASL) mechanisms (such as PLAIN, CRAM-MD5, and DIGEST-MD5), as well as other protocols exchanging simple user names and/or passwords.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 21% of the total text.

Network Working Group                                        K. Zeilenga

Request for Comments: 4013                           OpenLDAP Foundation

Category: Standards Track                                  February 2005

       SASLprep: Stringprep Profile for User Names and Passwords

Status of This Memo

   This document specifies an Internet standards track protocol for the

   Internet community, and requests discussion and suggestions for

   improvements.  Please refer to the current edition of the "Internet

   Official Protocol Standards" (STD 1) for the standardization state

   and status of this protocol.  Distribution of this memo is unlimited.

Copyright Notice

   Copyright (C) The Internet Society (2005).

Abstract

   This document describes how to prepare Unicode strings representing

   user names and passwords for comparison.  The document defines the

   "SASLprep" profile of the "stringprep" algorithm to be used for both

   user names and passwords.  This profile is intended to be used by

   Simple Authentication and Security Layer (SASL) mechanisms (such as

   PLAIN, CRAM-MD5, and DIGEST-MD5), as well as other protocols

   exchanging simple user names and/or passwords.

1.  Introduction

   The use of simple user names and passwords in authentication and

   authorization is pervasive on the Internet.  To increase the

   likelihood that user name and password input and comparison work in

   ways that make sense for typical users throughout the world, this

   document defines rules for preparing internationalized user names and

   passwords for comparison.  For simplicity and implementation ease, a

   single algorithm is defined for both user names and passwords.

   The algorithm assumes all strings are comprised of characters from

   the Unicode [Unicode] character set.

   This document defines the "SASLprep" profile of the "stringprep"

   algorithm [StringPrep].

   The profile is designed for use in Simple Authentication and Security

   Layer ([SASL]) mechanisms, such as [PLAIN], [CRAM-MD5], and

   [DIGEST-MD5].  It may be applicable where simple user names and

Zeilenga                    Standards Track                     [Page 1]

RFC 4013                        SASLprep                   February 2005

   passwords are used.  This profile is not intended for use in

   preparing identity strings that are not simple user names (e.g.,

   email addresses, domain names, distinguished names), or where

   identity or password strings that are not character data, or require

   different handling (e.g., case folding).

   This document does not alter the technical specification of any

   existing protocols.  Any specification that wishes to use the

   algorithm described in this docume...