Using Digest Authentication as a SASL Mechanism

Document Type Expired Internet-Draft (sasl WG)
Author Alexey Melnikov 
Last updated 2007-03-05
Replaces draft-melnikov-rfc2831bis
Stream Internet Engineering Task Force (IETF)
Intended RFC status (None)
Expired & archived
plain text pdf htmlized bibtex
Stream WG state WG Document
Document shepherd No shepherd assigned
IESG IESG state Expired
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This specification defines how HTTP Digest Authentication (RFC 2617) can be used as a Simple Authentication and Security Layer (SASL, RFC 4422) mechanism for any protocol that has a SASL profile. It is intended both as an improvement over CRAM-MD5 (RFC 2195) and as a convenient way to support a single authentication mechanism for web, mail, LDAP, and other protocols.


Alexey Melnikov (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)