RFC 2078 (rfc2078) - Page 1 of 85
Generic Security Service Application Program Interface, Version 2
Alternative Format: Original Text Document
Network Working Group J. Linn
Request for Comments: 2078 OpenVision Technologies
Category: Standards Track January 1997
Obsoletes: 1508
Generic Security Service Application Program Interface, Version 2
Status of this Memo
This document specifies an Internet standards track protocol for the
Internet community, and requests discussion and suggestions for
improvements. Please refer to the current edition of the "Internet
Official Protocol Standards" (STD 1) for the standardization state
and status of this protocol. Distribution of this memo is unlimited.
Abstract
The Generic Security Service Application Program Interface (GSS-API),
as defined in RFC-1508, provides security services to callers in a
generic fashion, supportable with a range of underlying mechanisms
and technologies and hence allowing source-level portability of
applications to different environments. This specification defines
GSS-API services and primitives at a level independent of underlying
mechanism and programming language environment, and is to be
complemented by other, related specifications:
documents defining specific parameter bindings for particular
language environments
documents defining token formats, protocols, and procedures to be
implemented in order to realize GSS-API services atop particular
security mechanisms
This memo revises RFC-1508, making specific, incremental changes in
response to implementation experience and liaison requests. It is
intended, therefore, that this memo or a successor version thereto
will become the basis for subsequent progression of the GSS-API
specification on the standards track.
Table of Contents
1: GSS-API Characteristics and Concepts.......................... 3
1.1: GSS-API Constructs.......................................... 6
1.1.1: Credentials.............................................. 6
1.1.1.1: Credential Constructs and Concepts...................... 6
1.1.1.2: Credential Management................................... 7
1.1.1.3: Default Credential Resolution........................... 8
Linn Standards Track