SASL
RFC 4422 Simple Authentication and Security Layer (SASL)
http://srgia.com/docs/rfc4422j.html
プロトコルと認証を分けるインターフェース的なところ
GSS-APIも使える?
プロトコル
TLSやSSH前提
SMTP
IMAP
POP3
RFC 5034 POP3 SASL 認証メカニズム http://srgia.com/docs/rfc5034j.html
LDAP
XMPP
ACAP?
認証
EXTERNAL
RFC 4616 The PLAIN Simple Authentication and Security Layer (SASL) Mechanism
RFC 5801 Using Generic Security Service Application Program Interface (GSS-API) Mechanisms in Simple Authentication and Security Layer (SASL): The GS2 Mechanism Family
SASLのGSS-APIメカニズム: GS2 メカニズム群
RFC 5802 Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms
RFC 7677 SCRAM-SHA-256 and SCRAM-SHA-256-PLUS Simple Authentication and Security Layer (SASL) Mechanisms
DIGEST-MD5 (Historic) RFC 1321, 2831, 6331
RFC 6331 Moving DIGEST-MD5 to Historic
RFC 2831 (廃止 6331) Using Digest Authentication as a SASL Mechanism
RFC 2595 Using TLS with IMAP, POP3 and ACAP
RFC 2743 GSS-API
RFC 4752 The Kerberos V5 ("GSSAPI") Simple Authentication and Security Layer (SASL) Mechanism
RFC 2222 KERBEROS_IV (ふるい) → 4422, 4752 https://www.nic.ad.jp/ja/tech/ipa/RFC2222JA.html
RFC 4505 Anonymous Simple Authentication and Security Layer (SASL) Mechanism
RFC 2222 SKEY (ふるい)
RFC 2195 CRAM-MD5
PRECIS Framework (SASLprep)
RFC 8265 Preparation, Enforcement, and Comparison of Internationalized Strings Representing Usernames and Passwords
RFC 7613 (廃止 8265) Preparation, Enforcement, and Comparison of Internationalized Strings Representing Usernames and Passwords
RFC 4013 (廃止 7613) SASLprep: Stringprep Profile for User Names and Passwords
Java
javax.security.sasl
HTTPはちょっと別?
RFC 7616 HTTP Digest Access Authentication
RFC 7617 The 'Basic' HTTP Authentication Scheme