{"draft":"draft-ietf-httpauth-scram-auth-15","doc_id":"RFC7804","title":"Salted Challenge Response HTTP Authentication Mechanism","authors":["A. Melnikov"],"format":["ASCII","HTML"],"page_count":"18","pub_status":"EXPERIMENTAL","status":"EXPERIMENTAL","source":"Hypertext Transfer Protocol Authentication","abstract":"This specification describes a family of HTTP authentication\r\nmechanisms called the Salted Challenge Response Authentication\r\nMechanism (SCRAM), which provides a more robust authentication\r\nmechanism than a plaintext password protected by Transport Layer\r\nSecurity (TLS) and avoids the deployment obstacles presented by\r\nearlier TLS-protected challenge response authentication mechanisms.","pub_date":"March 2016","keywords":["HTTPAUTH","HTTP","SASL","SCRAM","GS2","GSSAPI","GSS-API"],"obsoletes":[],"obsoleted_by":[],"updates":[],"updated_by":[],"see_also":[],"doi":"10.17487\/RFC7804","errata_url":"https:\/\/www.rfc-editor.org\/errata\/rfc7804"}