draft-ietf-sasl-saslprep-03.txt   draft-ietf-sasl-saslprep-04.txt 
INTERNET-DRAFT Kurt D. Zeilenga INTERNET-DRAFT Kurt D. Zeilenga
Intended Category: Standards Track OpenLDAP Foundation Intended Category: Standards Track OpenLDAP Foundation
Expires in six months 30 June 2003 Expires in six months 27 October 2003
SASLprep: Stringprep profile for user names and passwords SASLprep: Stringprep profile for user names and passwords
<draft-ietf-sasl-saslprep-03.txt> <draft-ietf-sasl-saslprep-04.txt>
Status of Memo Status of Memo
This document is an Internet-Draft and is in full conformance with all This document is an Internet-Draft and is in full conformance with all
provisions of Section 10 of RFC 2026. provisions of Section 10 of RFC 2026.
This document is intended to be, after appropriate review and This document is intended to be, after appropriate review and
revision, submitted to the RFC Editor as a Standards Track document. revision, submitted to the RFC Editor as a Standards Track document.
Distribution of this memo is unlimited. Technical discussion of this Distribution of this memo is unlimited. Technical discussion of this
document will take place on the IETF SASL mailing list document will take place on the IETF SASL mailing list
skipping to change at page 1, line 44 skipping to change at page 1, line 44
Copyright (C) The Internet Society (2003). All Rights Reserved. Copyright (C) The Internet Society (2003). All Rights Reserved.
Please see the Full Copyright section near the end of this document Please see the Full Copyright section near the end of this document
for more information. for more information.
Abstract Abstract
This document describes how to prepare Unicode strings representing This document describes how to prepare Unicode strings representing
user names and passwords for comparison. The document defines the user names and passwords for comparison. The document defines the
"SASLprep" "stringprep" profile to be used for both user names and "SASLprep" profile of the "stringprep" algorithm to be used for both
passwords. This profile is intended to be used by Simple user names and passwords. This profile is intended to be used by
Authentication and Security Layer (SASL) mechanisms (such as PLAIN, Simple Authentication and Security Layer (SASL) mechanisms (such as
CRAM-MD5, and DIGEST-MD5) as well as other protocols exchanging user PLAIN, CRAM-MD5, and DIGEST-MD5) as well as other protocols exchanging
names and/or passwords. user names and/or passwords.
1. Introduction 1. Introduction
The use of simple user names and passwords in authentication and The use of simple user names and passwords in authentication and
authorization is pervasive on the Internet. To increase the authorization is pervasive on the Internet. To increase the
likelihood that user name and password input and comparison work in likelihood that user name and password input and comparison work in
ways that make sense for typical users throughout the world, this ways that make sense for typical users throughout the world, this
document defines rules for preparing internationalized user names and document defines rules for preparing internationalized user names and
passwords for comparison. For simplicity and implementation ease, a passwords for comparison. For simplicity and implementation ease, a
single algorithm is defined for both user names and passwords. single algorithm is defined for both user names and passwords.
This document defines the "SASLprep" profile of the "stringprep" This document defines the "SASLprep" profile of the "stringprep"
protocol [StringPrep]. algorithm [StringPrep].
The profile is designed for use in Simple Authentication and Security The profile is designed for use in Simple Authentication and Security
Layer ([SASL]) mechanisms such as [PLAIN]. It may be applicable Layer ([SASL]) mechanisms such as [PLAIN]. It may be applicable
elsewhere simple user names and passwords are used. This profile is elsewhere simple user names and passwords are used. This profile is
not intended to be used for arbitrary text. This profile is also not not intended to be used for arbitrary text. This profile is also not
intended to be used to prepare identity strings which are not simple intended to be used to prepare identity strings which are not simple
user names (e.g., e-mail addresses, domain names, distinguished user names (e.g., e-mail addresses, domain names, distinguished
names). names).
2. The SASLprep profile 2. The SASLprep profile
skipping to change at page 4, line 41 skipping to change at page 4, line 41
This document borrows text from "Preparation of Internationalized This document borrows text from "Preparation of Internationalized
Strings ('stringprep')" and "Nameprep: A Stringprep Profile for Strings ('stringprep')" and "Nameprep: A Stringprep Profile for
Internationalized Domain Names", both by Paul Hoffman and Marc Internationalized Domain Names", both by Paul Hoffman and Marc
Blanchet. Blanchet.
This document is a product of the IETF SASL WG. This document is a product of the IETF SASL WG.
6. Normative References 6. Normative References
[StringPrep] Hoffman P. and M. Blanchet, "Preparation of [StringPrep] Hoffman P. and M. Blanchet, "Preparation of
Internationalized Strings ('stringprep')", RFC 3454, Internationalized Strings ('stringprep')",
December 2002. draft-hoffman-rfc3454bis-xx.txt, a work in progress.
[SASL] Myers, J., "Simple Authentication and Security Layer [SASL] Melnikov, A. (Editor), "Simple Authentication and
(SASL)", draft-myers-saslrev-xx.txt, a work in progress. Security Layer (SASL)",
draft-ietf-sasl-rfc2222bis-xx.txt, a work in progress.
[Unicode] The Unicode Consortium, "The Unicode Standard, Version [Unicode] The Unicode Consortium, "The Unicode Standard, Version
3.2.0" is defined by "The Unicode Standard, Version 3.0" 3.2.0" is defined by "The Unicode Standard, Version 3.0"
(Reading, MA, Addison-Wesley, 2000. ISBN 0-201-61633-5), (Reading, MA, Addison-Wesley, 2000. ISBN 0-201-61633-5),
as amended by the "Unicode Standard Annex #27: Unicode as amended by the "Unicode Standard Annex #27: Unicode
3.1" (http://www.unicode.org/reports/tr27/) and by the 3.1" (http://www.unicode.org/reports/tr27/) and by the
"Unicode Standard Annex #28: Unicode 3.2" "Unicode Standard Annex #28: Unicode 3.2"
(http://www.unicode.org/reports/tr28/). (http://www.unicode.org/reports/tr28/).
7. Informative References 7. Informative References
[Glossary] The Unicode Consortium, "Unicode Glossary", [Glossary] The Unicode Consortium, "Unicode Glossary",
<http://www.unicode.org/glossary/>. <http://www.unicode.org/glossary/>.
[CharModel] Whistler, K. and M. Davis, "Unicode Technical Report [CharModel] Whistler, K. and M. Davis, "Unicode Technical Report
#17, Character Encoding Model", UTR17, #17, Character Encoding Model", UTR17,
<http://www.unicode.org/unicode/reports/tr17/>, August <http://www.unicode.org/unicode/reports/tr17/>, August
2000. 2000.
[CRAM-MD5] Nerenberg, L., "The CRAM-MD5 SASL Mechanism", [CRAM-MD5] Nerenberg, L., "The CRAM-MD5 SASL Mechanism",
draft-nerenberg-sasl-crammd5-xx.txt, a work in progress. draft-ietf-sasl-crammd5-xx.txt, a work in progress.
[DIGEST-MD5] Leach, P., C. Newman, and A. Melnikov, "Using Digest [DIGEST-MD5] Leach, P., C. Newman, and A. Melnikov, "Using Digest
Authentication as a SASL Mechanism", Authentication as a SASL Mechanism",
draft-ietf-sasl-rfc2831bis-xx.txt, a work in progress. draft-ietf-sasl-rfc2831bis-xx.txt, a work in progress.
[PLAIN] Zeilenga, K., "The Plain SASL Mechanism", [PLAIN] Zeilenga, K. (Editor), "The Plain SASL Mechanism",
draft-ietf-sasl-plain-xx.txt, a work in progress. draft-ietf-sasl-plain-xx.txt, a work in progress.
8. Editor's Address 8. Editor's Address
Kurt Zeilenga Kurt Zeilenga
OpenLDAP Foundation OpenLDAP Foundation
Email: kurt@OpenLDAP.org Email: kurt@OpenLDAP.org
Intellectual Property Rights Intellectual Property Rights
 End of changes. 

This html diff was produced by rfcdiff 1.23, available from http://www.levkowetz.com/ietf/tools/rfcdiff/