[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: SASL, TLS and SSLv3

To: "'hartgers@kfm1.phys.tue.nl'" <hartgers@kfm1.phys.tue.nl>, openldap-devel@openldap.org
Subject: RE: SASL, TLS and SSLv3
From: Jon Parry-McCulloch <John.Parry-McCulloch@liffe.com>
Date: Wed, 2 Dec 1998 10:43:18 -0000


	Quote from rfc2222 (Simple Authentication and Security Layer):

	 During the authentication protocol exchange, the mechanism
performs
	   authentication, transmits an authorization identity
(frequently known
	   as a userid) from the client to server, and negotiates the
use of a
	   mechanism-specific security layer.  If the use of a security
layer is
	   agreed upon, then the mechanism must also define or negotiate
the
	   maximum cipher-text buffer size that each side is able to
receive.

	This is still not encryption per se. It is merely negotiating a
protocol for the client and server to use between them.

	Jon

Follow-Ups:
- RE: SASL, TLS and SSLv3
  - From: hartgers@kfm1.phys.tue.nl

Prev by Date: Re: SASL, TLS and SSLv3
Next by Date: RE: SASL, TLS and SSLv3
Index(es):
- Chronological
- Thread