Skip to main content

HTTP Transport Authentication
draft-schinazi-httpbis-transport-auth-05

Document Type Expired Internet-Draft (individual)
Author David Schinazi
Last updated 2021-09-13 (Latest revision 2021-03-12)
Stream (None)
Formats
Expired & archived
plain text html xml htmlized pdfized bibtex
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)
This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at:
https://www.ietf.org/archive/id/draft-schinazi-httpbis-transport-auth-05.txt

Abstract

The most common existing authentication mechanisms for HTTP are sent with each HTTP request, and authenticate that request instead of the underlying HTTP connection, or transport. While these mechanisms work well for existing uses of HTTP, they are not suitable for emerging applications that multiplex non-HTTP traffic inside an HTTP connection. This document describes the HTTP Transport Authentication Framework, a method of authenticating not only an HTTP request, but also its underlying transport.

Authors

David Schinazi

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)