Skip to main content

Common Authentication Technology Next Generation (kitten)

Document Date Status IPR AD/Shepherd
Active Internet-Drafts (2 hits)
37 pages 2022-06-08 Waiting for Writeup 923
Submitted to IESG for Publication : Proposed Standard
Reviews: secdir LC genart LC opsdir LC
Mar 2022
1 Paul Wouters
Nicolás Williams
34 pages
draft-ietf-kitten-sasl-saml-ec-20
SAML Enhanced Client SASL and GSS-API Mechanisms
2021-05-10 AD Evaluation::Revised I-D Needed 29
Submitted to IESG for Publication : Proposed Standard
Action Holders: Simon Josefsson 29, Margaret Cullen 29, Scott Cantor 29
Paul Wouters
Robbie Harwood
Expired Internet-Drafts (10 hits)
9 pages
draft-ietf-kitten-channel-bound-flag-04
Channel Binding Signalling for the Generic Security Services Application Programming Interface
2019-02-05 Expired
WG Document

11 pages
draft-ietf-kitten-gss-sanon-01
A Simple Anonymous GSS-API Mechanism
2020-07-05 Expired
WG Document

95 pages 2005-11-21 Expired
WG Document

10 pages 2004-12-27 Expired
WG Document

22 pages 2005-10-19 Expired
WG Document

9 pages
draft-ietf-kitten-kerberos-iana-registries-04
Move Kerberos protocol parameter registries to IANA
2017-03-30 Expired
Parked WG Document

9 pages
draft-ietf-kitten-krb-service-discovery-00
Kerberos Service Discovery using DNS
2017-02-09 Expired
WG Document

13 pages
draft-ietf-kitten-password-storage-07
Best practices for password hashing and storage
2021-09-27 Expired
WG Document
Nov 2022

8 pages
draft-ietf-kitten-scram-2fa-01
Extensions to Salted Challenge Response (SCRAM) for 2 factor authentication
2022-01-25 Expired
WG Document
Apr 2022

17 pages
draft-ietf-kitten-stackable-pseudo-mechs-02
Stackable Generic Security Service Pseudo-Mechanisms
2006-06-29 Expired
WG Document

Replaced Internet-Draft (1 hit)
7 pages
draft-melnikov-scram-2fa-03
Extensions to Salted Challenge Response (SCRAM) for 2 factor authentication
2021-05-24 Replaced by draft-ietf-kitten-scram-2fa
WG Document

RFCs (25 hits)
22 pages
RFC 4178 (was draft-ietf-kitten-2478bis)
The Simple and Protected Generic Security Service Application Program Interface (GSS-API) Negotiation Mechanism
2005-10 Proposed Standard RFC Sam Hartman
8 pages
RFC 4401 (was draft-ietf-kitten-gssapi-prf)
A Pseudo-Random Function (PRF) API Extension for the Generic Security Service Application Program Interface (GSS-API)
2006-02 Proposed Standard RFC Sam Hartman
5 pages
RFC 4402 (was draft-ietf-kitten-krb5-gssapi-prf)
A Pseudo-Random Function (PRF) for the Kerberos V Generic Security Service Application Program Interface (GSS-API) Mechanism Errata
2006-02 Historic RFC
Obsoleted by RFC 7802
Sam Hartman
12 pages
RFC 4768 (was draft-ietf-kitten-gss-naming)
Desired Enhancements to Generic Security Services Application Program Interface (GSS-API) Version 3 Naming
2006-12 Informational RFC 1 Russ Housley
9 pages
RFC 5178 (was draft-ietf-kitten-gssapi-domain-based-names)
Generic Security Service Application Program Interface (GSS-API) Internationalization and Domain-Based Service Names and Name Type
2008-05 Proposed Standard RFC Sam Hartman
5 pages
RFC 5179 (was draft-ietf-kitten-krb5-gssapi-domain-based-names)
Generic Security Service Application Program Interface (GSS-API) Domain-Based Service Names Mapping for the Kerberos V GSS Mechanism
2008-05 Proposed Standard RFC Sam Hartman
4 pages
RFC 5554 (was draft-ietf-kitten-gssapi-channel-bindings)
Clarifications and Extensions to the Generic Security Service Application Program Interface (GSS-API) for the Use of Channel Bindings
2009-05 Proposed Standard RFC Tim Polk
16 pages
RFC 5587 (was draft-ietf-kitten-extended-mech-inquiry)
Extended Generic Security Service Mechanism Inquiry APIs
2009-07 Proposed Standard RFC Tim Polk
7 pages
RFC 5588 (was draft-ietf-kitten-gssapi-store-cred)
Generic Security Service Application Program Interface (GSS-API) Extension for Storing Delegated Credentials
2009-07 Proposed Standard RFC Tim Polk
99 pages
RFC 5653 (was draft-ietf-kitten-rfc2853bis)
Generic Security Service API Version 2: Java Bindings Update
2009-08 Proposed Standard RFC
Obsoleted by RFC 8353
Tim Polk
6 pages
RFC 6331 (was draft-ietf-kitten-digest-to-historic)
Moving DIGEST-MD5 to Historic
2011-07 Informational RFC Stephen Farrell
22 pages
RFC 6595 (was draft-ietf-kitten-sasl-saml)
A Simple Authentication and Security Layer (SASL) and GSS-API Mechanism for the Security Assertion Markup Language (SAML)
2012-04 Proposed Standard RFC Stephen Farrell
18 pages
RFC 6616 (was draft-ietf-kitten-sasl-openid)
A Simple Authentication and Security Layer (SASL) and Generic Security Service Application Program Interface (GSS-API) Mechanism for OpenID Errata
2012-05 Proposed Standard RFC Stephen Farrell
Alexey Melnikov
18 pages
RFC 6680 (was draft-ietf-kitten-gssapi-naming-exts)
Generic Security Service Application Programming Interface (GSS-API) Naming Extensions Errata
2012-08 Proposed Standard RFC Stephen Farrell
21 pages
RFC 7546 (was draft-ietf-kitten-gss-loop)
Structure of the Generic Security Service (GSS) Negotiation Loop
2015-05 Informational RFC Stephen Farrell
Matthew A. Miller
21 pages
RFC 7628 (was draft-ietf-kitten-sasl-oauth)
A Set of Simple Authentication and Security Layer (SASL) Mechanisms for OAuth
2015-08 Proposed Standard RFC Stephen Farrell
Benjamin Kaduk
10 pages
RFC 7751 (was draft-ietf-kitten-cammac)
Kerberos Authorization Data Container Authenticated by Multiple Message Authentication Codes (MACs)
2016-03 Proposed Standard RFC Stephen Farrell
Benjamin Kaduk
8 pages
RFC 7802 (was draft-ietf-kitten-rfc4402bis)
A Pseudo-Random Function (PRF) for the Kerberos V Generic Security Service Application Program Interface (GSS-API) Mechanism
2016-03 Proposed Standard RFC Stephen Farrell
Benjamin Kaduk
19 pages
RFC 8009 (was draft-ietf-kitten-aes-cts-hmac-sha2)
AES Encryption with HMAC-SHA2 for Kerberos 5
2016-10 Informational RFC Stephen Farrell
Benjamin Kaduk
18 pages
RFC 8062 (was draft-ietf-kitten-rfc6112bis)
Anonymity Support for Kerberos
2017-02 Proposed Standard RFC Stephen Farrell
Matt Rogers
9 pages
RFC 8070 (was draft-ietf-kitten-pkinit-freshness)
Public Key Cryptography for Initial Authentication in Kerberos (PKINIT) Freshness Extension
2017-02 Proposed Standard RFC Stephen Farrell
Matt Rogers
6 pages
RFC 8129 (was draft-ietf-kitten-krb-auth-indicator)
Authentication Indicator in Kerberos Tickets
2017-03 Proposed Standard RFC Stephen Farrell
Benjamin Kaduk
96 pages
RFC 8353 (was draft-ietf-kitten-rfc5653bis)
Generic Security Service API Version 2: Java Bindings Update
2018-05 Proposed Standard RFC Eric Rescorla
Matt Rogers
21 pages
RFC 8636 (was draft-ietf-kitten-pkinit-alg-agility)
Public Key Cryptography for Initial Authentication in Kerberos (PKINIT) Algorithm Agility
2019-07 Proposed Standard RFC Benjamin Kaduk
Robbie Harwood
7 pages
RFC 9266 (was draft-ietf-kitten-tls-channel-bindings-for-tls13)
Channel Bindings for TLS 1.3
2022-07 Proposed Standard RFC Paul Wouters
Alexey Melnikov
Related Internet-Drafts (2 hits)
12 pages
draft-reitzenstein-kitten-opaque-01
A SASL and GSS-API Mechanism family using the asymmetric password-authenticated key agreement OPAQUE
2022-10-06 I-D Exists
11 pages
draft-schmaus-kitten-sasl-ht-09
The Hashed Token SASL Mechanism
2022-11-06 I-D Exists