Simple Authentication and Security Layer (SASL)

Document Type Withdrawn by Submitter Internet-Draft (individual)
Authors Alexey Melnikov  , Kurt Zeilenga 
Last updated 2005-06-13 (latest revision 2005-05-17)
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Withdrawn by Submitter
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


The Simple Authentication and Security Layer (SASL) is a framework for providing authentication and data security services in connection-oriented protocols via replaceable mechanisms. It provides a structured interface between protocols and mechanisms. The resulting framework allows new protocols to reuse existing mechanisms and allows old protocols to make use of new mechanisms. The framework also provides a protocol for securing subsequent protocol exchanges within a data security layer. This document describes how a SASL mechanism is structured, describes how protocols include support for SASL, and defines the protocol for carrying a data security layer over a connection. Additionally, this document defines one SASL mechanism, the EXTERNAL mechanism. This document obsoletes RFC 2222.


Alexey Melnikov (
Kurt Zeilenga (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)