As per Relevance of the word mechanism, we have this rfc below:
Network Working Group J.
Request for Comments: 1511 Geer Zolot
September 1993
Common Authentication Technology
Status of this
This memo provides information for the Internet community. It
not specify an Internet standard. Distribution of this memo
unlimited
The IETF's Common Authentication Technology (CAT) working group
pursued, and continues to pursue, several interrelated activities
involving definition of service interfaces as well as protocols.
a goal, it has sought to separate security implementation tasks
integration of security data elements into caller protocols,
those tasks to be partitioned and performed separately
implementors with different areas of expertise. This strategy
intended to provide leverage for the IETF community's security
oriented resources (by allowing a single security implementation
be integrated with, and used by, multiple caller protocols), and
allow protocol implementors to focus on the functions that
protocols are designed to provide rather than on characteristics
particular security mechanisms (by defining an abstract service
multiple mechanisms can realize).
The CAT WG has worked towards agreement on a common
interface, (the Generic Security Service Application
Interface, or GSS-API), allowing callers to invoke
functions, and also towards agreement on a common security
format incorporating means to identify the mechanism type
conjunction with which security data elements should be interpreted
The GSS-API, comprising a mechanism-independent model for
integration, provides authentication services (peer
authentication) to a variety of protocol callers in a manner
insulates those callers from the specifics of underlying
mechanisms. With certain underlying mechanisms, per-
protection facilities (data origin authentication, data integrity
and data confidentiality) can also be provided. This work
represented in a pair of RFCs: RFC-1508 (GSS-API) and RFC-1509
(concrete bindings realizing the GSS-API for the C language).
J. Linn [Page 1]
RFC 1511 CAT Overview September 1993
Concurrently, the CAT WG has worked on agreements on
security technologies, and their associated protocols,
the GSS-API model. Definitions of two candidate mechanisms
currently available as Internet specifications; development
additional mechanisms is anticipated. RFC-1510, a standards-
specification, documents the Kerberos Version 5 technology, based
secret-key cryptography and contributed by the
Institute of Technology. RFC-1507, an experimental specification
documents the Distributed Authentication Services technology,
on X.509 public-key technology and contributed by Digital
Corporation
[1] Kaufman, C., "Distributed Authentication Security Service",
1507, Digital Equipment Corporation, September 1993.
[2] Linn, J., "Generic Security Service Application
Interface", RFC 1508, Geer Zolot Associates, September 1993.
[3] Wray, J., "Generic Security Service API : C-bindings", RFC 1509,
Digital Equipment Corporation, September 1993.
[4] Kohl, J., and C. Neuman, "The Kerberos Network
Service (V5)", Digital Equipment Corporation, USC/
Sciences Institute, September 1993.
Security
Security issues are discussed throughout the references
Author's
John
Geer Zolot
One Main St
Cambridge, MA 02142
Phone: +1 617.374.3700
Email: Linn@gza.
J. Linn [Page 2]
if you see any problems within the linking, don't worry be happy,
this is version 0.1 of the Relevance System and you gotta expect some crappy subroutines sometimes,
just be content we did not write this in Java, which would have made this "bigger and better" HAHAHHA.
RFC documents can be found at I.E.T.F.
Relevance System Copyright © 2002 Spectrum WorldResearch
other technical nosh by ServerMasters Corporation
collaboration of BobX
