source: draft-ietf-httpbis-authscheme-registrations/04/draft-ietf-httpbis-authscheme-registrations.redxml @ 1850

<?xml version="1.0" encoding="UTF-8"?>
<!--
    This XML document is the output of clean-for-DTD.xslt; a tool that strips
    extensions to RFC2629(bis) from documents for processing with xml2rfc.
-->
<?xml-stylesheet type='text/xsl' href='../../draft-ietf-httpbis/myxml2rfc.xslt'?>
<?rfc toc="yes"?>
<?rfc symrefs="yes"?>
<?rfc sortrefs="yes"?>
<?rfc compact="yes"?>
<?rfc comments="yes"?>
<?rfc inline="yes"?>
<?rfc subcompact="no"?>
<?rfc rfcedstyle="yes"?>
<!DOCTYPE rfc
  PUBLIC "" "rfc2629.dtd">
<rfc ipr="trust200902" docName="draft-ietf-httpbis-authscheme-registrations-04" category="info">

        <front>
  <title abbrev="HTTP Authentication Scheme Registrations">Initial Hypertext Transfer Protocol (HTTP)
  Authentication Scheme Registrations</title>

  <author initials="J. F." surname="Reschke" fullname="Julian F. Reschke">
    <organization abbrev="greenbytes">greenbytes GmbH</organization>
    <address>
      <postal>
        <street>Hafenweg 16</street>
        <city>Muenster</city><region>NW</region><code>48155</code>
        <country>Germany</country>
      </postal>
      <email>julian.reschke@greenbytes.de</email>       
      <uri>http://greenbytes.de/tech/webdav/</uri>      
    </address>
  </author>

  <date month="August" year="2012" day="16"/>
  <workgroup>HTTPbis Working Group</workgroup>
  
  <abstract>
  <t>
    This document registers Hypertext Transfer Protocol (HTTP)
    authentication schemes which have been defined in standards-track RFCs
    before the IANA HTTP Authentication Scheme Registry was established.
  </t>
  </abstract>
  
  <note title="Editorial Note (To be removed by RFC Editor)">
    <t>
      Discussion of this draft takes place on the HTTPBIS working group
      mailing list (ietf-http-wg@w3.org), which is archived at
      <eref target="http://lists.w3.org/Archives/Public/ietf-http-wg/"/>.
    </t>
    <t>
      The current issues list is at
      <eref target="http://trac.tools.ietf.org/wg/httpbis/trac/query?component=authscheme-registrations"/> and related
      documents (including fancy diffs) can be found at
      <eref target="http://tools.ietf.org/wg/httpbis/"/>.
    </t>
    <t>
      The changes in this draft are summarized in <xref target="changes.since.03"/>.
    </t>
  </note>

  </front>

  <middle>

<section title="Introduction" anchor="introduction">
  <t>
    This document registers Hypertext Transfer Protocol (HTTP)
    authentication schemes which have been defined in standards-track RFCs
    before the IANA HTTP Authentication Scheme Registry was established.
  </t>
</section>  
  
<section title="Security Considerations" anchor="security.considerations">
  <t>
    There are no security considerations related to the registration itself.
  </t>
</section>  

<section title="IANA Considerations" anchor="iana.considerations">
<t>
  <xref target="initial.registry.contents"/> provides initial registrations
  of HTTP authentication schemes for the IANA HTTP Authentication Scheme registry 
  at <eref target="http://www.iana.org/assignments/http-authschemes"/>
  (see Section 2.3 of <xref target="draft-ietf-httpbis-p7-auth"/>).
</t>
</section>  
  </middle>
  <back>
  
<references title="Normative References">

<reference anchor="draft-ietf-httpbis-p7-auth">
  <front>
    <title abbrev="HTTP/1.1">HTTP/1.1, part 7: Authentication</title>
    <author initials="R." surname="Fielding" fullname="Roy T. Fielding" role="editor">
      <organization abbrev="Adobe">Adobe Systems Incorporated</organization>
      <address><email>fielding@gbiv.com</email></address>
    </author>
    <author initials="Y." surname="Lafon" fullname="Yves Lafon" role="editor">
      <organization abbrev="W3C">World Wide Web Consortium</organization>
      <address><email>ylafon@w3.org</email></address>
    </author>
    <author initials="J. F." surname="Reschke" fullname="Julian F. Reschke" role="editor">
      <organization abbrev="greenbytes">greenbytes GmbH</organization>
      <address><email>julian.reschke@greenbytes.de</email></address>
    </author>
    <date month="July" year="2012"/>
  </front>
  <seriesInfo name="Internet-Draft" value="draft-ietf-httpbis-p7-auth-20"/>
  
</reference>

<reference anchor="RFC2617">
  <front>
    <title abbrev="HTTP Authentication">HTTP Authentication: Basic and Digest Access Authentication</title>
    <author initials="J." surname="Franks" fullname="John Franks">
      <organization>Northwestern University, Department of Mathematics</organization>
      <address><email>john@math.nwu.edu</email></address>
    </author>
    <author initials="P.M." surname="Hallam-Baker" fullname="Phillip M. Hallam-Baker">
      <organization>Verisign Inc.</organization>
      <address><email>pbaker@verisign.com</email></address>
    </author>
    <author initials="J.L." surname="Hostetler" fullname="Jeffery L. Hostetler">
      <organization>AbiSource, Inc.</organization>
      <address><email>jeff@AbiSource.com</email></address>
    </author>
    <author initials="S.D." surname="Lawrence" fullname="Scott D. Lawrence">
      <organization>Agranat Systems, Inc.</organization>
      <address><email>lawrence@agranat.com</email></address>
    </author>
    <author initials="P.J." surname="Leach" fullname="Paul J. Leach">
      <organization>Microsoft Corporation</organization>
      <address><email>paulle@microsoft.com</email></address>
    </author>
    <author initials="A." surname="Luotonen" fullname="Ari Luotonen">
      <organization>Netscape Communications Corporation</organization>
    </author>
    <author initials="L." surname="Stewart" fullname="Lawrence C. Stewart">
      <organization>Open Market, Inc.</organization>
      <address><email>stewart@OpenMarket.com</email></address>
    </author>
    <date month="June" year="1999"/>
  </front>
  <seriesInfo name="RFC" value="2617"/>
</reference>

<reference anchor="RFC4559">
  <front>
    <title>SPNEGO-based Kerberos and NTLM HTTP Authentication in Microsoft Windows</title>
    <author initials="K." surname="Jaganathan" fullname="K. Jaganathan"/>
    <author initials="L." surname="Zhu" fullname="L. Zhu"/>
    <author initials="J." surname="Brezak" fullname="J. Brezak"/>
    <date year="2006" month="June"/>
  </front>
  <seriesInfo name="RFC" value="4559"/>
</reference>

</references>
  
<!--<references title="Informative References">
</references>-->

<section title="Initial Registry Contents" anchor="initial.registry.contents">
<texttable align="left">

<ttcol>Authentication Scheme Name</ttcol>
<ttcol>Reference</ttcol>
<ttcol>Notes</ttcol>

<c>Basic</c><c><xref target="RFC2617"/>, Section 2</c><c/>

<c>Digest</c><c><xref target="RFC2617"/>, Section 3</c><c/>

<c>Negotiate</c><c><xref target="RFC4559"/>, Section 3</c>
<c>This authentication scheme violates both HTTP semantics (being connection-oriented)
and syntax (use of syntax incompatible with the WWW-Authenticate and Authorization header field
syntax).</c>

</texttable>
</section>

<section title="Change Log (to be removed by RFC Editor before publication)" anchor="change.log">
<section title="Since draft-ietf-httpbis-authscheme-registrations-00" anchor="changes.since.00">
<t>
  Update draft-ietf-httpbis-p7-auth reference.
</t>
</section>

<section title="Since draft-ietf-httpbis-authscheme-registrations-01" anchor="changes.since.01">
<t>
  Update draft-ietf-httpbis-p7-auth reference.
</t>
<t>
  Closed issues:
  <list style="symbols">
    <t>
      <eref target="http://tools.ietf.org/wg/httpbis/trac/ticket/308"/>:
      "need to reserve 'negotiate' as auth scheme name"
    </t>
  </list>
</t>
</section>

<section title="Since draft-ietf-httpbis-authscheme-registrations-02" anchor="changes.since.02">
<t>
  Update draft-ietf-httpbis-p7-auth reference.
</t>
</section>

<section title="Since draft-ietf-httpbis-authscheme-registrations-03" anchor="changes.since.03">
<t>
  Update draft-ietf-httpbis-p7-auth reference.
</t>
</section>
</section>

  </back>

</rfc>