One document matched: draft-oiwa-http-mutualauth-02.ps
%!PS-Adobe-3.0
%%Title: Mutual Authentication Protocol for HTTP
%%Creator: html2ps version 1.0 beta3
%%CreationDate: Fri Feb 8 15:46:00 2008
%%DocumentNeededResources: font Times-Roman Times-Bold Courier Courier-Oblique
%%+ font Helvetica
%%DocumentData: Clean7Bit
%%Orientation: Portrait
%%BoundingBox: 0 0 596 842
%%Pages: 24
%%EndComments
%%BeginProlog
/d {bind def} bind def
/D {def} d
/ie {ifelse} d
/E {exch} d
/t true D
/f false D
/FL [/Times-Roman
/Times-Italic
/Times-Bold
/Times-BoldItalic
/Courier
/Courier-Oblique
/Courier-Bold
/Courier-BoldOblique
/Helvetica
/Helvetica-Oblique
/Helvetica-Bold
/Helvetica-BoldOblique] D
/Cd {aload length 2 idiv dup dict begin {D} repeat currentdict end} D
/reencodeISO {
dup dup findfont dup length dict begin{1 index /FID ne{D}{pop pop}ie}forall
/Encoding ISOLatin1Encoding D currentdict end definefont} D
/ISOLatin1Encoding [
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/space/exclam/quotedbl/numbersign/dollar/percent/ampersand/quoteright
/parenleft/parenright/asterisk/plus/comma/hyphen/period/slash
/zero/one/two/three/four/five/six/seven/eight/nine/colon/semicolon
/less/equal/greater/question/at/A/B/C/D/E/F/G/H/I/J/K/L/M/N
/O/P/Q/R/S/T/U/V/W/X/Y/Z/bracketleft/backslash/bracketright
/asciicircum/underscore/quoteleft/a/b/c/d/e/f/g/h/i/j/k/l/m
/n/o/p/q/r/s/t/u/v/w/x/y/z/braceleft/bar/braceright/asciitilde
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/space/exclamdown/cent/sterling/currency/yen/brokenbar
/section/dieresis/copyright/ordfeminine/guillemotleft/logicalnot
/hyphen/registered/macron/degree/plusminus/twosuperior/threesuperior
/acute/mu/paragraph/periodcentered/cedilla/onesuperior/ordmasculine
/guillemotright/onequarter/onehalf/threequarters/questiondown
/Agrave/Aacute/Acircumflex/Atilde/Adieresis/Aring/AE/Ccedilla
/Egrave/Eacute/Ecircumflex/Edieresis/Igrave/Iacute/Icircumflex
/Idieresis/Eth/Ntilde/Ograve/Oacute/Ocircumflex/Otilde/Odieresis
/multiply/Oslash/Ugrave/Uacute/Ucircumflex/Udieresis/Yacute
/Thorn/germandbls/agrave/aacute/acircumflex/atilde/adieresis
/aring/ae/ccedilla/egrave/eacute/ecircumflex/edieresis/igrave
/iacute/icircumflex/idieresis/eth/ntilde/ograve/oacute/ocircumflex
/otilde/odieresis/divide/oslash/ugrave/uacute/ucircumflex/udieresis
/yacute/thorn/ydieresis
] D
[128/backslash 129/parenleft 130/parenright 141/circumflex 142/tilde
143/perthousand 144/dagger 145/daggerdbl 146/Ydieresis 147/scaron 148/Scaron
149/oe 150/OE 151/guilsinglleft 152/guilsinglright 153/quotesinglbase
154/quotedblbase 155/quotedblleft 156/quotedblright 157/endash 158/emdash
159/trademark]
aload length 2 idiv 1 1 3 -1 roll{pop ISOLatin1Encoding 3 1 roll put}for
/colorimage where{pop}{
/colorimage {
pop pop /Pr E D {/Cv Pr D /Gr Cv length 3 idiv string D 0 1 Gr length 1 sub
{Gr E dup /i E 3 mul D Cv i get 0.299 mul Cv i 1 add get 0.587 mul add
Cv i 2 add get 0.114 mul add cvi put}for Gr} image} D
}ie
/pdfmark where{pop}{userdict /pdfmark /cleartomark load put}ie
/MySymbol 10 dict dup begin
/FontType 3 D /FontMatrix [.001 0 0 .001 0 0 ] D /FontBBox [25 -10 600 600] D
/Encoding 256 array D 0 1 255{Encoding exch /.notdef put}for
Encoding (e) 0 get /euro put
/Metrics 2 dict D Metrics begin
/.notdef 0 D
/euro 651 D
end
/BBox 2 dict D BBox begin
/.notdef [0 0 0 0] D
/euro [25 -10 600 600] D
end
/CharacterDefs 2 dict D CharacterDefs begin
/.notdef {} D
/euro{newpath 114 600 moveto 631 600 lineto 464 200 lineto 573 200 lineto
573 0 lineto -94 0 lineto 31 300 lineto -10 300 lineto closepath clip
50 setlinewidth newpath 656 300 moveto 381 300 275 0 360 arc stroke
-19 350 moveto 600 0 rlineto -19 250 moveto 600 0 rlineto stroke}d
end
/BuildChar{0 begin
/char E D /fontdict E D /charname fontdict /Encoding get char get D
fontdict begin
Metrics charname get 0 BBox charname get aload pop setcachedevice
CharacterDefs charname get exec
end
end}D
/BuildChar load 0 3 dict put /UniqueID 1 D
end
definefont pop
/Nf {dup 0 ge{FL E get}{-1 eq{/Symbol}{/MySymbol}ie}ie findfont
E scalefont setfont} D
/IP {currentfile picstr readhexstring pop} D
/WF t D
/F 1 D
/N {showpage} d
/RL {rlineto} d
/S {show} d
/L {lineto} d
/M {moveto} d
/A {awidthshow} d
/RM {rmoveto} d
%%EndProlog
%%BeginSetup
%%PaperSize: A4
WF{FL{reencodeISO D}forall}{4 1 FL length 1 sub{FL E get reencodeISO D}for}ie
/Symbol dup dup findfont dup length dict begin
{1 index /FID ne{D}{pop pop}ie}forall /Encoding [Encoding aload pop]
dup 128 /therefore put D currentdict end definefont D
[/Creator (html2ps version 1.0 beta3) /Author () /Keywords (HTTP, authentication) /Subject () /Title (Mutual Authentication Protocol for HTTP) /DOCINFO pdfmark
[/PageMode /UseOutlines /DOCVIEW pdfmark
[/Count 1 /Dest /100 /Title (Mutual Authentication Protocol for HTTP draft-oiwa-http-mutualauth-02) /OUT pdfmark
[/Count 47 /Dest /101 /Title () /OUT pdfmark
[/Dest /101 /Title (Status of this Memo) /OUT pdfmark
[/Dest /102 /Title (Copyright Notice) /OUT pdfmark
[/Dest /103 /Title (Abstract) /OUT pdfmark
[/Dest /104 /Title (Table of Contents) /OUT pdfmark
[/Dest /105 /Title (1.\240 Introduction) /OUT pdfmark
[/Dest /106 /Title (1.1.\240 Requirements Language) /OUT pdfmark
[/Dest /107 /Title (2.\240 Protocol Overview) /OUT pdfmark
[/Dest /108 /Title (3.\240 Message Syntax) /OUT pdfmark
[/Dest /109 /Title (3.1.\240 Tokens and Extensive-tokens) /OUT pdfmark
[/Dest /110 /Title (3.2.\240 Numbers) /OUT pdfmark
[/Dest /111 /Title (3.3.\240 Strings) /OUT pdfmark
[/Dest /112 /Title (4.\240 Messages) /OUT pdfmark
[/Dest /113 /Title (4.1.\240 401-B0) /OUT pdfmark
[/Dest /114 /Title (4.2.\240 401-B0-stale) /OUT pdfmark
[/Dest /115 /Title (4.3.\240 req-A1) /OUT pdfmark
[/Dest /116 /Title (4.4.\240 401-B1) /OUT pdfmark
[/Dest /117 /Title (4.5.\240 req-A3) /OUT pdfmark
[/Dest /118 /Title (4.6.\240 200-B4) /OUT pdfmark
[/Dest /119 /Title (5.\240 Decision procedure for the client) /OUT pdfmark
[/Dest /120 /Title (6.\240 Decision procedure for the server) /OUT pdfmark
[/Dest /121 /Title (7.\240 Authentication Algorithms) /OUT pdfmark
[/Dest /122 /Title (7.1.\240 Common functions) /OUT pdfmark
[/Dest /123 /Title (7.2.\240 Functions for discrete-logarithm settings) /OUT pdfmark
[/Dest /124 /Title (7.3.\240 Functions for elliptic-curve settings) /OUT pdfmark
[/Dest /125 /Title (8.\240 Validation Methods) /OUT pdfmark
[/Dest /126 /Title (9.\240 Session Management) /OUT pdfmark
[/Dest /127 /Title (10.\240 Extension 1: Optional Mutual Authentication) /OUT pdfmark
[/Dest /128 /Title (11.\240 Methods to extend this protocol) /OUT pdfmark
[/Dest /129 /Title (12.\240 IANA Considerations) /OUT pdfmark
[/Dest /130 /Title (13.\240 Security Considerations) /OUT pdfmark
[/Dest /131 /Title (13.1.\240 General Assumptions) /OUT pdfmark
[/Dest /132 /Title (13.2.\240 Implementation Considerations) /OUT pdfmark
[/Dest /133 /Title (13.3.\240 Usage Considerations) /OUT pdfmark
[/Dest /134 /Title (14.\240 Notice on intellectual properties) /OUT pdfmark
[/Dest /135 /Title (15.\240 Acknowledgement) /OUT pdfmark
[/Dest /136 /Title (16.\240 References) /OUT pdfmark
[/Dest /137 /Title (16.1.\240Normative References) /OUT pdfmark
[/Dest /138 /Title (16.2.\240Informative References) /OUT pdfmark
[/Dest /139 /Title (Appendix A.\240 Group parameters for discrete-logarithm based algorithms) /OUT pdfmark
[/Dest /140 /Title (Appendix B.\240 Derived numerical values) /OUT pdfmark
[/Dest /141 /Title (Appendix C.\240 Draft Remarks from the Authors) /OUT pdfmark
[/Dest /142 /Title (Appendix D.\240 Draft Change Log) /OUT pdfmark
[/Dest /143 /Title (D.1.\240 Changes in revision 02) /OUT pdfmark
[/Dest /144 /Title (Authors' Addresses) /OUT pdfmark
[/Dest /145 /Title (Full Copyright Statement) /OUT pdfmark
[/Dest /146 /Title (Intellectual Property) /OUT pdfmark
[/Dest /147 /Title (Acknowledgment) /OUT pdfmark
%%EndSetup
%%Page: 1 1
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 0 M
[/View [/XYZ -4 842 null] /Dest /0 /DEST pdfmark
0 -0 M
save
2.5 -13.5 M
%%IncludeResource: font Times-Roman
11 0 Nf
(Internet Engineering Task ) S
(Force) S
197 -13.5 M
(Y. ) S
(Oiwa) S
2.5 -32.2 M
(Internet-Draft) S
197 -32.2 M
(H. ) S
(Watanabe) S
2.5 -51 M
(Intended status: Standards ) S
(Track) S
197 -51 M
(H. ) S
(Takagi) S
2.5 -69.8 M
(Expires: August 11, ) S
(2008) S
197 -69.8 M
(RCIS, ) S
(AIST) S
2.5 -88.5 M
(\240) S
197 -88.5 M
(H. ) S
(Suzuki) S
2.5 -107.2 M
(\240) S
197 -107.2 M
(Yahoo! ) S
(Japan) S
2.5 -126 M
(\240) S
197 -126 M
(February 8, ) S
(2008) S
0 -131.2 M
restore
227 -146.4 M
[/View [/XYZ -4 842 null] /Dest /100 /DEST pdfmark
54.4 -165.4 M
%%IncludeResource: font Times-Bold
19 2 Nf
(Mutual Authentication Protocol for ) S
(HTTP) S
100.9 -188.2 M
(draft-oiwa-http-mutualauth-02) S
0 -218.2 M
15 2 Nf
(Status) S
[/View [/XYZ -4 556.750244 null] /Dest /101 /DEST pdfmark
( of this ) S
(Memo) S
0 -242.4 M
11 0 Nf
0.0673304945 0 32 0 0 (By submitting this Internet-Draft, each author represents that any applicable patent or other IPR claims) A
0 -255.6 M
0.178385422 0 32 0 0 (of which he or she is aware have been or will be disclosed, and any of which he or she becomes aware) A
0 -268.8 M
(will be disclosed, in accordance with Section\2406 of ) S
(BCP\24079.) S
0 -293 M
0.0044468469 0 32 0 0 (Internet-Drafts are working documents of the Internet Engineering Task Force \(IETF\), its areas, and its) A
0 -306.2 M
(working groups. Note that other groups may also distribute working documents as ) S
(Internet-Drafts.) S
0 -330.4 M
0.26809895 0 32 0 0 (Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced,) A
0 -343.6 M
1.51114905 0 32 0 0 (or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference) A
0 -356.8 M
(material or to cite them other than as \233work in ) S
(progress.\234) S
0 -381 M
(The list of current Internet-Drafts can be accessed at ) S
(http://www.ietf.org/ietf/1id-abstracts.txt) S
[/Rect [232.050537 -383.799316 410.342773 -371.69931] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://www.ietf.org/ietf/1id-abstracts.txt)] Cd /ANN pdfmark
(.) S
0 -405.2 M
(The list of Internet-Draft Shadow Directories can be accessed at ) S
(http://www.ietf.org/shadow.html) S
[/Rect [283.683594 -407.999268 430.209717 -395.899261] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://www.ietf.org/shadow.html)] Cd /ANN pdfmark
(.) S
0 -429.4 M
(This Internet-Draft will expire on August 11, ) S
(2008.) S
0 -459.4 M
15 2 Nf
(Copyright) S
[/View [/XYZ -4 315.550781 null] /Dest /102 /DEST pdfmark
( ) S
(Notice) S
0 -483.6 M
11 0 Nf
(Copyright \251 The IETF Trust ) S
(\(2008\).) S
0 -513.6 M
15 2 Nf
(Abstract) S
[/View [/XYZ -4 261.35083 null] /Dest /103 /DEST pdfmark
0 -537.8 M
11 0 Nf
0.240589485 0 32 0 0 (This document specifies the "Mutual authentication protocol for Hyper-Text Transport Protocol". This) A
0 -551 M
4.19451332 0 32 0 0 (protocol provides true mutual authentication between HTTP clients and servers using simple) A
0 -564.2 M
2.14125967 0 32 0 0 (password-based authentication. Unlike Basic and Digest HTTP access authentication protocol, the) A
0 -577.4 M
5.25352907 0 32 0 0 (protocol ensures that server knows the user's entity \(encrypted password\) upon successful) A
0 -590.6 M
0.611594439 0 32 0 0 (authentication. This prevents common phishing attacks: phishing attackers cannot convince users that) A
0 -603.8 M
2.18352866 0 32 0 0 (the user has been authenticated to the genuine website. Furthermore, even when a user has been) A
0 -617 M
0.548182905 0 32 0 0 (authenticated against an illegitimate server, the server cannot gain any bit of information about user's) A
0 -630.2 M
1.24257815 0 32 0 0 (passwords. The protocol is designed as an extension to the HTTP protocol, and the protocol design) A
0 -643.4 M
0.75175339 0 32 0 0 (intends to replace existing authentication mechanism such as Basic/Digest access authentications and) A
0 -656.6 M
(form-based authentications. ) S
0 -656.6 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 1 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 2 2
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 0 M
[/View [/XYZ -4 757.0 null] /Dest /1 /DEST pdfmark
0 -18 M
%%IncludeResource: font Times-Bold
15 2 Nf
(Table) S
[/View [/XYZ -4 757.0 null] /Dest /104 /DEST pdfmark
( of ) S
(Contents) S
0 -42.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
(1.) S
[/Rect [-1.0 -44.9499512 9.25 -32.8499527] /Subtype /Link /Border [0 0 1] /Dest /2 /ANN pdfmark
(\240 ) S
(Introduction) S
0 -55.4 M
(\240\240\240\240) S
(1.1.) S
[/Rect [10.0 -58.1499023 28.5 -46.0499039] /Subtype /Link /Border [0 0 1] /Dest /4 /ANN pdfmark
(\240 Requirements ) S
(Language) S
0 -68.6 M
(2.) S
[/Rect [-1.0 -71.3498535 9.25 -59.249855] /Subtype /Link /Border [0 0 1] /Dest /6 /ANN pdfmark
(\240 Protocol ) S
(Overview) S
0 -81.8 M
(3.) S
[/Rect [-1.0 -84.5498047 9.25 -72.4498062] /Subtype /Link /Border [0 0 1] /Dest /8 /ANN pdfmark
(\240 Message ) S
(Syntax) S
0 -95 M
(\240\240\240\240) S
(3.1.) S
[/Rect [10.0 -97.7497559 28.5 -85.6497574] /Subtype /Link /Border [0 0 1] /Dest /11 /ANN pdfmark
(\240 Tokens and ) S
(Extensive-tokens) S
0 -108.2 M
(\240\240\240\240) S
(3.2.) S
[/Rect [10.0 -110.949707 28.5 -98.8497086] /Subtype /Link /Border [0 0 1] /Dest /13 /ANN pdfmark
(\240 ) S
(Numbers) S
0 -121.4 M
(\240\240\240\240) S
(3.3.) S
[/Rect [10.0 -124.149658 28.5 -112.04966] /Subtype /Link /Border [0 0 1] /Dest /15 /ANN pdfmark
(\240 ) S
(Strings) S
0 -134.6 M
(4.) S
[/Rect [-1.0 -137.349609 9.25 -125.249611] /Subtype /Link /Border [0 0 1] /Dest /17 /ANN pdfmark
(\240 ) S
(Messages) S
0 -147.8 M
(\240\240\240\240) S
(4.1.) S
[/Rect [10.0 -150.549561 28.5 -138.449554] /Subtype /Link /Border [0 0 1] /Dest /19 /ANN pdfmark
(\240 ) S
(401-B0) S
0 -161 M
(\240\240\240\240) S
(4.2.) S
[/Rect [10.0 -163.749512 28.5 -151.649506] /Subtype /Link /Border [0 0 1] /Dest /21 /ANN pdfmark
(\240 ) S
(401-B0-stale) S
0 -174.2 M
(\240\240\240\240) S
(4.3.) S
[/Rect [10.0 -176.949463 28.5 -164.849457] /Subtype /Link /Border [0 0 1] /Dest /23 /ANN pdfmark
(\240 ) S
(req-A1) S
0 -187.4 M
(\240\240\240\240) S
(4.4.) S
[/Rect [10.0 -190.149414 28.5 -178.049408] /Subtype /Link /Border [0 0 1] /Dest /25 /ANN pdfmark
(\240 ) S
(401-B1) S
0 -200.6 M
(\240\240\240\240) S
(4.5.) S
[/Rect [10.0 -203.349365 28.5 -191.249359] /Subtype /Link /Border [0 0 1] /Dest /27 /ANN pdfmark
(\240 ) S
(req-A3) S
0 -213.8 M
(\240\240\240\240) S
(4.6.) S
[/Rect [10.0 -216.549316 28.5 -204.44931] /Subtype /Link /Border [0 0 1] /Dest /29 /ANN pdfmark
(\240 ) S
(200-B4) S
0 -227 M
(5.) S
[/Rect [-1.0 -229.749268 9.25 -217.649261] /Subtype /Link /Border [0 0 1] /Dest /31 /ANN pdfmark
(\240 Decision procedure for the ) S
(client) S
0 -240.2 M
(6.) S
[/Rect [-1.0 -242.949219 9.25 -230.849213] /Subtype /Link /Border [0 0 1] /Dest /34 /ANN pdfmark
(\240 Decision procedure for the ) S
(server) S
0 -253.4 M
(7.) S
[/Rect [-1.0 -256.14917 9.25 -244.049164] /Subtype /Link /Border [0 0 1] /Dest /36 /ANN pdfmark
(\240 Authentication ) S
(Algorithms) S
0 -266.6 M
(\240\240\240\240) S
(7.1.) S
[/Rect [10.0 -269.349121 28.5 -257.249115] /Subtype /Link /Border [0 0 1] /Dest /38 /ANN pdfmark
(\240 Common ) S
(functions) S
0 -279.8 M
(\240\240\240\240) S
(7.2.) S
[/Rect [10.0 -282.549072 28.5 -270.449066] /Subtype /Link /Border [0 0 1] /Dest /40 /ANN pdfmark
(\240 Functions for discrete-logarithm ) S
(settings) S
0 -293 M
(\240\240\240\240) S
(7.3.) S
[/Rect [10.0 -295.749023 28.5 -283.649017] /Subtype /Link /Border [0 0 1] /Dest /42 /ANN pdfmark
(\240 Functions for elliptic-curve ) S
(settings) S
0 -306.2 M
(8.) S
[/Rect [-1.0 -308.948975 9.25 -296.848969] /Subtype /Link /Border [0 0 1] /Dest /44 /ANN pdfmark
(\240 Validation ) S
(Methods) S
0 -319.4 M
(9.) S
[/Rect [-1.0 -322.148926 9.25 -310.04892] /Subtype /Link /Border [0 0 1] /Dest /46 /ANN pdfmark
(\240 Session ) S
(Management) S
0 -332.6 M
(10.) S
[/Rect [-1.0 -335.348877 14.75 -323.248871] /Subtype /Link /Border [0 0 1] /Dest /48 /ANN pdfmark
(\240 Extension 1: Optional Mutual ) S
(Authentication) S
0 -345.8 M
(11.) S
[/Rect [-1.0 -348.548828 14.75 -336.448822] /Subtype /Link /Border [0 0 1] /Dest /50 /ANN pdfmark
(\240 Methods to extend this ) S
(protocol) S
0 -359 M
(12.) S
[/Rect [-1.0 -361.748779 14.75 -349.648773] /Subtype /Link /Border [0 0 1] /Dest /52 /ANN pdfmark
(\240 IANA ) S
(Considerations) S
0 -372.2 M
(13.) S
[/Rect [-1.0 -374.94873 14.75 -362.848724] /Subtype /Link /Border [0 0 1] /Dest /54 /ANN pdfmark
(\240 Security ) S
(Considerations) S
0 -385.4 M
(\240\240\240\240) S
(13.1.) S
[/Rect [10.0 -388.148682 34.0 -376.048676] /Subtype /Link /Border [0 0 1] /Dest /56 /ANN pdfmark
(\240 General ) S
(Assumptions) S
0 -398.6 M
(\240\240\240\240) S
(13.2.) S
[/Rect [10.0 -401.348633 34.0 -389.248627] /Subtype /Link /Border [0 0 1] /Dest /58 /ANN pdfmark
(\240 Implementation ) S
(Considerations) S
0 -411.8 M
(\240\240\240\240) S
(13.3.) S
[/Rect [10.0 -414.548584 34.0 -402.448578] /Subtype /Link /Border [0 0 1] /Dest /60 /ANN pdfmark
(\240 Usage ) S
(Considerations) S
0 -425 M
(14.) S
[/Rect [-1.0 -427.748535 14.75 -415.648529] /Subtype /Link /Border [0 0 1] /Dest /62 /ANN pdfmark
(\240 Notice on intellectual ) S
(properties) S
0 -438.2 M
(15.) S
[/Rect [-1.0 -440.948486 14.75 -428.84848] /Subtype /Link /Border [0 0 1] /Dest /64 /ANN pdfmark
(\240 ) S
(Acknowledgement) S
0 -451.4 M
(16.) S
[/Rect [-1.0 -454.148438 14.75 -442.048431] /Subtype /Link /Border [0 0 1] /Dest /68 /ANN pdfmark
(\240 ) S
(References) S
0 -464.6 M
(\240\240\240\240) S
(16.1.) S
[/Rect [10.0 -467.348389 34.0 -455.248383] /Subtype /Link /Border [0 0 1] /Dest /68 /ANN pdfmark
(\240 Normative ) S
(References) S
0 -477.8 M
(\240\240\240\240) S
(16.2.) S
[/Rect [10.0 -480.54834 34.0 -468.448334] /Subtype /Link /Border [0 0 1] /Dest /79 /ANN pdfmark
(\240 Informative ) S
(References) S
0 -491 M
(Appendix\240A.) S
[/Rect [-1.0 -493.748291 57.8254395 -481.648285] /Subtype /Link /Border [0 0 1] /Dest /88 /ANN pdfmark
(\240 Group parameters for discrete-logarithm based ) S
(algorithms) S
0 -504.2 M
(Appendix\240B.) S
[/Rect [-1.0 -506.948242 57.220459 -494.848236] /Subtype /Link /Border [0 0 1] /Dest /90 /ANN pdfmark
(\240 Derived numerical ) S
(values) S
0 -517.4 M
(Appendix\240C.) S
[/Rect [-1.0 -520.148193 57.220459 -508.048187] /Subtype /Link /Border [0 0 1] /Dest /92 /ANN pdfmark
(\240 Draft Remarks from the ) S
(Authors) S
0 -530.6 M
(Appendix\240D.) S
[/Rect [-1.0 -533.348145 57.8254395 -521.248169] /Subtype /Link /Border [0 0 1] /Dest /94 /ANN pdfmark
(\240 Draft Change ) S
(Log) S
0 -543.8 M
(\240\240\240\240) S
(D.1.) S
[/Rect [10.0 -546.548096 30.9418945 -534.44812] /Subtype /Link /Border [0 0 1] /Dest /96 /ANN pdfmark
(\240 Changes in revision ) S
(02) S
0 -557 M
(\247) S
[/Rect [-1.0 -559.748047 6.5 -547.648071] /Subtype /Link /Border [0 0 1] /Dest /98 /ANN pdfmark
(\240 Authors' ) S
(Addresses) S
0 -570.2 M
(\247) S
[/Rect [-1.0 -572.948 6.5 -560.848] /Subtype /Link /Border [0 0 1] /Dest /99 /ANN pdfmark
(\240 Intellectual Property and Copyright ) S
(Statements) S
0 -581.2 M
[/View [/XYZ -4 175.802 null] /Dest /2 /DEST pdfmark
0 -581.2 M
[/View [/XYZ -4 175.802 null] /Dest /3 /DEST pdfmark
0 -600.2 M
15 2 Nf
(1.\240) S
[/View [/XYZ -4 174.802 null] /Dest /105 /DEST pdfmark
( ) S
(Introduction) S
0 -624.4 M
11 0 Nf
0.240589485 0 32 0 0 (This document specifies the "Mutual authentication protocol for Hyper-Text Transport Protocol". This) A
0 -637.6 M
4.19451332 0 32 0 0 (protocol provides true mutual authentication between HTTP clients and servers using simple) A
0 -650.8 M
4.48380518 0 32 0 0 (password-based authentication. Unlike ) A
4.48380518 0 32 0 0 (Basic and Digest HTTP access authentication ) A
4.48380518 0 32 0 0 (protocol) A
[/Rect [185.972168 -653.547852 454.998535 -641.447876] /Subtype /Link /Border [0 0 1] /Dest /85 /ANN pdfmark
0 -664 M
2.82834888 0 32 0 0 ([RFC2617], the protocol ensures that server knows the user's entity \(encrypted password\) upon) A
0 -664 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 2 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 3 3
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
0.337280273 0 32 0 0 (successful authentication. This prevents common phishing attacks: phishing attackers cannot convince) A
0 -26.4 M
11 0 Nf
0.729171753 0 32 0 0 (users that the user has been authenticated to the genuine website. Furthermore, even when a user has) A
0 -39.6 M
0.94100517 0 32 0 0 (been authenticated against an illegitimate server, the server cannot gain any bit of information about) A
0 -52.8 M
(user's ) S
(passwords.) S
0 -77 M
1.95089018 0 32 0 0 (Recently, phishing attacks are getting more and more sophisticated. Phishers not only steal user's) A
0 -90.2 M
0.306864411 0 32 0 0 (password directly, but imitate successful authentication to steal user's sensitive information, check the) A
0 -103.4 M
0.236572266 0 32 0 0 (password validity by forwarding the password to the legitimate server, or employ a man-in-the-middle) A
0 -116.6 M
1.80916345 0 32 0 0 (attack to hijack user's login session. Existing countermeasures such as one-time passwords cannot) A
0 -129.8 M
(completely solve these ) S
(problems.) S
0 -154 M
1.32700193 0 32 0 0 (The protocol prevents such attacks by providing users a way to discriminate between true and fake) A
0 -167.2 M
0.76625061 0 32 0 0 (web servers using their own passwords. Even when a user inputs his/her password to a fake website,) A
0 -180.4 M
0.141878262 0 32 0 0 (using this authentication method, any information about the password does not leak to the phisher, and) A
0 -193.6 M
3.15074754 0 32 0 0 (the user certainly notices that the mutual authentication has failed. Phishers cannot make such) A
0 -206.8 M
0.371614575 0 32 0 0 (authentication attempt succeed, even if they forward received data from a user to the legitimate server) A
0 -220 M
0.72126323 0 32 0 0 (or vice versa. Users can safely input sensitive data to the web forms after confirming that the mutual) A
0 -233.2 M
(authentication has succeeded. ) S
0 -257.4 M
0.392368853 0 32 0 0 (To achieve this goal, this protocol uses a mechanism in ) A
0.392368853 0 32 0 0 (ISO/IEC ) A
0.392368853 0 32 0 0 (11770-4) A
[/Rect [248.867188 -260.14917 329.171631 -248.049164] /Subtype /Link /Border [0 0 1] /Dest /82 /ANN pdfmark
0.392368853 0 32 0 0 ( [ISO.11770-4.2006], a kind) A
0 -270.6 M
1.4543457 0 32 0 0 (of PAKE \(Password-Authenticated Key Exchange\) authentication algorithms as a basis. The use of) A
0 -283.8 M
1.27234828 0 32 0 0 (PAKE mechanism allows users to use familiar ID/password based accesses, without fear of leaking) A
0 -297 M
2.0382812 0 32 0 0 (any password information to the communication peer. The protocol, as a whole, is designed as a) A
0 -310.2 M
(natural extension to the ) S
(HTTP ) S
(protocol) S
[/Rect [104.707764 -312.948975 173.619873 -300.848969] /Subtype /Link /Border [0 0 1] /Dest /84 /ANN pdfmark
( [RFC2616]. ) S
0 -334.4 M
0.427847058 0 32 0 0 (The design also considers to replace current form-based Web authentication, which is very vulnerable) A
0 -347.6 M
4.41650391 0 32 0 0 (against phishing attacks. To this purpose, several extensions to ) A
4.41650391 0 32 0 0 (current HTTP authentication ) A
[/Rect [317.69165 -350.348877 462.166504 -338.248871] /Subtype /Link /Border [0 0 1] /Dest /85 /ANN pdfmark
0 -360.8 M
(mechanism) S
[/Rect [-1.0 -363.548828 51.1037598 -351.448822] /Subtype /Link /Border [0 0 1] /Dest /85 /ANN pdfmark
( [RFC2617] are introduced. ) S
0 -371.8 M
[/View [/XYZ -4 385.201172 null] /Dest /4 /DEST pdfmark
0 -371.8 M
[/View [/XYZ -4 385.201172 null] /Dest /5 /DEST pdfmark
0 -390.8 M
%%IncludeResource: font Times-Bold
15 2 Nf
(1.1.\240) S
[/View [/XYZ -4 384.201172 null] /Dest /106 /DEST pdfmark
( Requirements ) S
(Language) S
0 -415 M
11 0 Nf
1.88576663 0 32 0 0 (The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD",) A
0 -428.2 M
2.68037558 0 32 0 0 ("SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be) A
0 -441.4 M
(interpreted as described in ) S
([RFC2119]) S
[/Rect [117.521973 -444.148682 169.637451 -432.048676] /Subtype /Link /Border [0 0 1] /Dest /71 /ANN pdfmark
(.) S
0 -452.4 M
[/View [/XYZ -4 304.601318 null] /Dest /6 /DEST pdfmark
0 -452.4 M
[/View [/XYZ -4 304.601318 null] /Dest /7 /DEST pdfmark
0 -471.4 M
15 2 Nf
(2.\240) S
[/View [/XYZ -4 303.601318 null] /Dest /107 /DEST pdfmark
( Protocol ) S
(Overview) S
0 -495.6 M
11 0 Nf
(The following sequence is a typical sequence for the first access to the resource. ) S
11 -516.2 M
gsave
0 setgray
newpath
11.0 -516.168701 2.75 0 360 arc
closepath
fill
grestore
22 -519.8 M
1.53380406 0 32 0 0 (If the server \(S\) has received a request for mutual-authentication protected resources from the) A
22 -533 M
(Client \(C\) \(which is not a req-A1 nor a req-A3 message\), it sends a 401-B0 message to C. ) S
22 -546.2 M
0.573844373 0 32 0 0 (When C has received a 401-B0 message, C SHOULD check validity of the message. If succeed,) A
22 -559.4 M
(C processes the body of the message, and enables the password entry field. ) S
11 -570 M
gsave
0 setgray
newpath
11.0 -569.968506 2.75 0 360 arc
closepath
fill
grestore
22 -573.6 M
0.155585393 0 32 0 0 (If the user has input the username and password as a response to the 401-B0 message, C creates a) A
22 -586.8 M
(value s_A, calculates the value w_A, and construct and send a req-A1 message. ) S
11 -597.4 M
gsave
0 setgray
newpath
11.0 -597.368408 2.75 0 360 arc
closepath
fill
grestore
22 -601 M
0.806091309 0 32 0 0 (If S has received an req-A1 message, S should check validity of w_A, record the received w_A) A
22 -614.2 M
0.741904795 0 32 0 0 (value, and then look up the username from the user table. if the user is found, S prepares a new) A
22 -627.4 M
1.26055908 0 32 0 0 (session id \(sid\), record it into a session table, and then construct s_B, calculate w_B, and then) A
22 -640.6 M
(send an 401-B1 message. ) S
22 -653.8 M
0.775491178 0 32 0 0 (If there is no matching user found, the server SHOULD construct a fake w_B value, and let the) A
22 -667 M
(protocol going on by sending an 401-B1 message. ) S
22 -668 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 3 -) S
0 setgray
44 -8 M
grestore
pgsave restore N
%%Page: 4 4
%%PageResources: font Times-Roman Times-Bold Courier Courier-Oblique Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
11 -9.6 M
gsave
0 setgray
newpath
11.0 -9.57006836 2.75 0 360 arc
closepath
fill
grestore
22 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
1.1306 0 32 0 0 (When C has received an 401-B1 message as a response for a req-A1 message, C should check) A
22 -26.4 M
11 0 Nf
(validity of w_B, and compute z and o_A, and send an req-A3 message. ) S
22 -39.6 M
0.0594787598 0 32 0 0 (If C receives any messages other than 401-B1, C MUST NOT process the message body and treat) A
22 -39.6 M
0.960657239 0.960657239 scale
0.0 -13.2 RM
(it as a fatal communication error condition. This case includes the reception of HTTP OK \(200-status\)) S
1.04095399 1.04095399 scale
22 -65.5 M
(message. ) S
11 -76.1 M
gsave
0 setgray
newpath
11.0 -76.0505371 2.75 0 360 arc
closepath
fill
grestore
22 -79.7 M
0.443386495 0 32 0 0 (If S has received an req-A3 message, S should look up the received sid from the session table. If) A
22 -92.9 M
0.573144555 0 32 0 0 (no matching sid message is received, or if S has not received the corresponding req-A1 message) A
22 -106.1 M
(beforehand, S SHOULD send an 401-B0-stale message. ) S
22 -119.3 M
1.3460449 0 32 0 0 (Otherwise, S should computes o_A and check its value. If the validation has failed, the server) A
22 -132.5 M
(SHOULD send an 401-B0 message. ) S
22 -145.7 M
(If the validation has succeeded, the server SHOULD calculate o_B, and send a 200-B4 message. ) S
11 -156.3 M
gsave
0 setgray
newpath
11.0 -156.250244 2.75 0 360 arc
closepath
fill
grestore
22 -159.9 M
1.04935133 0 32 0 0 (When C has received an 401-B0 message, it means the authentication has been failed, possibly) A
22 -159.9 M
0.954117 0.954117 scale
0.0 -13.2 RM
(due to that the wrong password has been given. C MAY ignore the body of the 401-B0 message in this) S
1.0480895 1.0480895 scale
22 -185.7 M
(case. ) S
22 -198.9 M
0.631439209 0 32 0 0 (When C has received an 200-B4 message, C MUST first compute the value of o_B and validate) A
22 -198.9 M
0.966542184 0.966542184 scale
0.0 -13.2 RM
(the value o_B sent from the server. If it has not verified successfully, C MUST ignore the body of the) S
1.03461599 1.03461599 scale
22 -211.6 M
0.998669744 0.998669744 scale
0.0 -13.2 RM
(message, and treat it as a fatal communication error condition. If it has succeed, C will process the) S
1.00133204 1.00133204 scale
22 -238 M
(body of the message. ) S
22 -251.2 M
2.28242183 0 32 0 0 (If C receives any messages other than 401-B0 or valid 200-B4, C MUST NOT process the) A
22 -264.4 M
0.777034521 0 32 0 0 (message body and other headers and treat it as a fatal communication error condition. This case) A
22 -277.6 M
(includes the reception of usual HTTP OK \(200-status\) messages. ) S
0 -301.8 M
0.0784790069 0 32 0 0 (For the second or later request to the server, if the client knows that the resource is likely to require the) A
0 -315 M
4.66856813 0 32 0 0 (authentication, the client MAY omit first unauthenticated request and send req-A1 message) A
0 -328.2 M
1.33206 0 32 0 0 (immediately. In this case, the first \(and only the first\) response from the server MAY be a normal,) A
0 -341.4 M
(unauthenticated message, and client MAY accept such messages. ) S
0 -365.6 M
1.49090576 0 32 0 0 (Furthermore, if client owns a valid session ID \(sid\), the client MAY send a req-A3 message using) A
0 -378.8 M
1.83444011 0 32 0 0 (existing sid. In such cases, the server MAY have thrown out the corresponding sessions, then the) A
0 -392 M
0.0854980499 0 32 0 0 (server SHOULD send a 401-B0-stale message as a response to req-A3 message, and C SHOULD retry) A
0 -405.2 M
(from constructing req-A1 message. ) S
0 -429.4 M
(For more detail, see ) S
(Section\2405) S
[/Rect [89.1208496 -432.164307 132.370117 -420.064301] /Subtype /Link /Border [0 0 1] /Dest /31 /ANN pdfmark
(. ) S
0 -440.4 M
[/View [/XYZ -4 316.585693 null] /Dest /8 /DEST pdfmark
0 -440.4 M
[/View [/XYZ -4 316.585693 null] /Dest /9 /DEST pdfmark
0 -459.4 M
%%IncludeResource: font Times-Bold
15 2 Nf
(3.\240) S
[/View [/XYZ -4 315.585693 null] /Dest /108 /DEST pdfmark
( Message ) S
(Syntax) S
0 -483.6 M
11 0 Nf
1.03065073 0 32 0 0 (The Mutual authentication protocol uses four headers: WWW-Authenticate \(in responses with status) A
0 -496.8 M
1.04125977 0 32 0 0 (code 401\), Optional-WWW-Authenticate \(in responses with positive status codes\), Authorization \(in) A
0 -510 M
2.30961466 0 32 0 0 (requests\), and Authentication-info \(in positive responses\). These three headers share the common) A
0 -523.2 M
3.31678987 0 32 0 0 (syntax described in ) A
3.31678987 0 32 0 0 (Figure\2401) A
[/Rect [96.6291504 -525.964111 135.599609 -513.864136] /Subtype /Link /Border [0 0 1] /Dest /10 /ANN pdfmark
3.31678987 0 32 0 0 (. The syntax is denoted in the augmented BNF syntax defined in ) A
0 -536.4 M
([RFC4234]) S
[/Rect [-1.0 -539.164062 51.1154785 -527.064087] /Subtype /Link /Border [0 0 1] /Dest /77 /ANN pdfmark
(. The syntax is a subset of the one described in ) S
([RFC2617]) S
[/Rect [256.857422 -539.164062 308.9729 -527.064087] /Subtype /Link /Border [0 0 1] /Dest /85 /ANN pdfmark
(. ) S
0 -547.4 M
gsave
0.6 setlinewidth
0 setgray
454.0 0 RL
stroke
grestore
0.0 -11.0 RM
0 -558.4 M
[/View [/XYZ -4 198.585938 null] /Dest /10 /DEST pdfmark
0 -569.2 M
%%IncludeResource: font Courier
9.0 4 Nf
( ) S
%%IncludeResource: font Courier-Oblique
9.0 5 Nf
(header) S
9.0 4 Nf
( = ) S
9.0 5 Nf
(header-name) S
9.0 4 Nf
( ":" [) S
9.0 5 Nf
(spaces) S
9.0 4 Nf
(] "Mutual" ) S
9.0 5 Nf
(spaces) S
9.0 4 Nf
( ) S
9.0 5 Nf
(fields) S
0 -580 M
9.0 4 Nf
( ) S
9.0 5 Nf
(header-name) S
9.0 4 Nf
( = "WWW-Authenticate" / "Optional-WWW-Authenticate") S
0 -590.8 M
( / "Authorization" / "Authentication-info") S
0 -601.6 M
9.0 4 Nf
( ) S
9.0 5 Nf
(spaces) S
9.0 4 Nf
( = 1*\(" " / %x09 / %x0D.0A \(" " / %x09\)\) ) S
9.0 5 Nf
(; LWSP) S
0 -612.4 M
9.0 4 Nf
( ) S
9.0 5 Nf
(fields) S
9.0 4 Nf
( = ) S
9.0 5 Nf
(field) S
9.0 4 Nf
( *\([) S
9.0 5 Nf
(spaces) S
9.0 4 Nf
(] "," ) S
9.0 5 Nf
(spaces) S
9.0 4 Nf
( ) S
9.0 5 Nf
(field) S
9.0 4 Nf
(\)) S
0 -623.2 M
9.0 4 Nf
( ) S
9.0 5 Nf
(field) S
9.0 4 Nf
( = ) S
9.0 5 Nf
(key) S
9.0 4 Nf
( "=" ) S
9.0 5 Nf
(value) S
0 -634 M
9.0 4 Nf
( ) S
9.0 5 Nf
(key) S
9.0 4 Nf
( = ) S
9.0 5 Nf
(extensive-token) S
0 -644.8 M
9.0 4 Nf
( ) S
9.0 5 Nf
(extensive-token) S
9.0 4 Nf
( = ) S
9.0 5 Nf
(token) S
9.0 4 Nf
( / ) S
9.0 5 Nf
(extension-token) S
0 -655.6 M
9.0 4 Nf
( ) S
9.0 5 Nf
(extension-token) S
9.0 4 Nf
( = ) S
9.0 5 Nf
(token) S
9.0 4 Nf
( "@" ) S
9.0 5 Nf
(token) S
0 -666.4 M
9.0 4 Nf
( ) S
9.0 5 Nf
(token) S
9.0 4 Nf
( = 1*\(%x30-39 / %x41-5A / %x61-7A / "." / "-" / "_"\)) S
0 -666.4 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 4 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 5 5
%%PageResources: font Times-Roman Times-Bold Courier Courier-Oblique Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -10.8 M
%%IncludeResource: font Courier
9.0 4 Nf
( ) S
%%IncludeResource: font Courier-Oblique
9.0 5 Nf
(value) S
9.0 4 Nf
( = ) S
9.0 5 Nf
(extensive-token) S
9.0 4 Nf
( / ) S
9.0 5 Nf
(integer) S
9.0 4 Nf
( / ) S
9.0 5 Nf
(hex-integer) S
0 -21.6 M
9.0 4 Nf
( / ) S
9.0 5 Nf
(hex-fixed-number) S
0 -32.4 M
9.0 4 Nf
( / ) S
9.0 5 Nf
(base64-fixed-number) S
9.0 4 Nf
( / ) S
9.0 5 Nf
(string) S
0 -43.2 M
9.0 4 Nf
( ) S
9.0 5 Nf
(integer) S
9.0 4 Nf
( = "0" / \(%x31-39 *%x30-39\) ) S
9.0 5 Nf
(; no leading zeros) S
0 -54 M
9.0 4 Nf
( ) S
9.0 5 Nf
(hex-integer) S
9.0 4 Nf
( = "0") S
0 -64.8 M
9.0 4 Nf
( / \(\(%x31-39 / %x41-46 / %x61-66\) ) S
9.0 5 Nf
(; no leading zeros) S
0 -75.6 M
9.0 4 Nf
( *\(%x30-39 / %x41-46 / %x61-66\)\)) S
0 -86.4 M
9.0 4 Nf
( ) S
9.0 5 Nf
(hex-fixed-number) S
9.0 4 Nf
( = 1*\(%x30-39 / %x41-46 / %x61-66\)) S
0 -97.2 M
9.0 4 Nf
( ) S
9.0 5 Nf
(base64-fixed-number) S
9.0 4 Nf
( = ) S
9.0 5 Nf
(string) S
0 -108 M
9.0 4 Nf
( ) S
9.0 5 Nf
(string) S
9.0 4 Nf
( = %x22 *\(%x20-21 / %x23-5B / %x5D-FF) S
0 -118.8 M
( / %x5C.22 / "\\\\" / "\\,"\) %x22) S
125.3 -141.7 M
%%IncludeResource: font Times-Bold
7.63889 2 Nf
(\240Figure\2401: the BNF syntax for the headers used in the ) S
(protocol\240) S
0 -155.6 M
gsave
0.6 setlinewidth
0 setgray
454.0 0 RL
stroke
grestore
0.0 -11.0 RM
0 -166.6 M
[/View [/XYZ -4 590.354 null] /Dest /11 /DEST pdfmark
0 -166.6 M
[/View [/XYZ -4 590.354 null] /Dest /12 /DEST pdfmark
0 -185.6 M
15 2 Nf
(3.1.\240) S
[/View [/XYZ -4 589.354 null] /Dest /109 /DEST pdfmark
( Tokens and ) S
(Extensive-tokens) S
0 -209.8 M
%%IncludeResource: font Times-Roman
11 0 Nf
0.288467407 0 32 0 0 (The tokens MUST be interpreted case-insensitive, and SHOULD be sent in the same case as shown in) A
0 -223 M
0.471305341 0 32 0 0 (the specification. When these are used as \(partial\) inputs to any hash or other mathematical functions,) A
0 -236.2 M
6.08892822 0 32 0 0 (it MUST be used in lower-case. All hex-fixed-number or hex-integer numbers are also) A
0 -249.4 M
(case-insensitive, and SHOULD be sent in lower-case. ) S
0 -273.6 M
3.13736987 0 32 0 0 (Extensive-tokens are used where the set of acceptable tokens are extensible. Any non-standard) A
0 -286.8 M
1.50427246 0 32 0 0 (extensions of this protocol MUST use the extension-tokens of format "<token>@<domain-name>",) A
0 -300 M
0.145589188 0 32 0 0 (where domain-name is the valid registered \(sub-\)domain name on the Internet owned by the party who) A
0 -313.2 M
(defines extensions. ) S
0 -324.2 M
[/View [/XYZ -4 432.754395 null] /Dest /13 /DEST pdfmark
0 -324.2 M
[/View [/XYZ -4 432.754395 null] /Dest /14 /DEST pdfmark
0 -343.2 M
15 2 Nf
(3.2.\240) S
[/View [/XYZ -4 431.754395 null] /Dest /110 /DEST pdfmark
( ) S
(Numbers) S
0 -367.4 M
11 0 Nf
0.00200544088 0 32 0 0 (The syntax definitions of integer and hex-integer only allow representations which do not contain extra) A
0 -380.6 M
(leading 0s. ) S
0 -404.8 M
1.3450458 0 32 0 0 (The numbers represented as a hex-fixed-number MUST have even characters \(i.e. multiple of eight) A
0 -418 M
0.35325405 0 32 0 0 (bits\). When these are generated from cryptographic values, those SHOULD have the natural length: if) A
0 -431.2 M
0.36618042 0 32 0 0 (these are generated from a hash function, these lengths SHOULD correspond to the hash size; if these) A
0 -444.4 M
1.42105544 0 32 0 0 (are representing elements of a mathematical group, its lengths SHOULD be the shortest which can) A
0 -457.6 M
0.153686523 0 32 0 0 (represent all elements in the group. See ) A
0.153686523 0 32 0 0 (Appendix\240B) A
[/Rect [176.037842 -460.395264 231.508301 -448.295258] /Subtype /Link /Border [0 0 1] /Dest /90 /ANN pdfmark
0.153686523 0 32 0 0 ( for information about the length of the fields used) A
0 -470.8 M
0.854614258 0 32 0 0 (in this specification. Other values such as session-id are represented in any \(even\) length determined) A
0 -484 M
2.92214966 0 32 0 0 (by the side who generates it first, and the same length SHALL be used throughout the whole) A
0 -497.2 M
(communications by both peers. ) S
0 -521.4 M
0.239971459 0 32 0 0 (The numbers represented as a base64-fixed-number SHALL be generated as follows: first, the number) A
0 -534.6 M
0.426175624 0 32 0 0 (is converted to a big-endian octet-string representation. The length of the representation is determined) A
0 -547.8 M
0.594848633 0 32 0 0 (in the same way as above. Then, the string is encoded by ) A
0.594848633 0 32 0 0 (the Base 64 ) A
0.594848633 0 32 0 0 (encoding) A
[/Rect [259.088135 -550.595 357.272705 -538.495] /Subtype /Link /Border [0 0 1] /Dest /75 /ANN pdfmark
0.594848633 0 32 0 0 ( [RFC3548], and then) A
0 -561 M
(enclosed by two double-quotations. ) S
0 -572 M
[/View [/XYZ -4 184.955078 null] /Dest /15 /DEST pdfmark
0 -572 M
[/View [/XYZ -4 184.955078 null] /Dest /16 /DEST pdfmark
0 -591 M
15 2 Nf
(3.3.\240) S
[/View [/XYZ -4 183.955078 null] /Dest /111 /DEST pdfmark
( ) S
(Strings) S
0 -615.2 M
11 0 Nf
1.29418945 0 32 0 0 (All strings outside ASCII or equivalent character sets SHOULD be encoded using ) A
1.29418945 0 32 0 0 (UTF-8 ) A
1.29418945 0 32 0 0 (encoding) A
[/Rect [378.688721 -617.994873 455.0 -605.894897] /Subtype /Link /Border [0 0 1] /Dest /76 /ANN pdfmark
0 -628.4 M
1.65767419 0 32 0 0 ([RFC3629] of the ) A
1.65767419 0 32 0 0 (ISO 10646-1 character ) A
1.65767419 0 32 0 0 (set) A
[/Rect [84.9423828 -631.194824 207.071289 -619.094849] /Subtype /Link /Border [0 0 1] /Dest /81 /ANN pdfmark
1.65767419 0 32 0 0 ( [ISO.10646-1.1993]. Both peers SHOULD reject any) A
0 -641.6 M
1.63942313 0 32 0 0 (invalid UTF-8 sequences which causes decoding ambiguities \(e.g. containing <"> in the second or) A
0 -654.8 M
0.922298193 0 32 0 0 (later byte of the UTF-8 encoded characters\). To encode character strings, these will first be encoded) A
0 -668 M
1.90341794 0 32 0 0 (according to UTF-8 without leading BOM, then all occurrences of characters <"> and "\\" will be) A
0 -668 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 5 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 6 6
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
0.102796055 0 32 0 0 (escaped by prepending "\\", and two <">s will be put around the string. If the contents of the strings are) A
0 -26.4 M
11 0 Nf
(comma-separated values, the commas in the values are also quoted by "\\". ) S
0 -50.6 M
0.370068371 0 32 0 0 (If strings are representing a domain name or URI which contains non-ASCII characters, the host parts) A
0 -63.8 M
1.27032 0 32 0 0 (SHOULD be encoded using puny-code defined in ) A
1.27032 0 32 0 0 ([RFC3492]) A
[/Rect [230.594727 -66.5498047 282.710205 -54.4498062] /Subtype /Link /Border [0 0 1] /Dest /87 /ANN pdfmark
1.27032 0 32 0 0 ( instead of UTF-8, and SHOULD use) A
0 -77 M
(lower-case ASCII characters. ) S
0 -101.2 M
(For Base64-fixed-numbers, which use the string syntax, see the previous section. ) S
0 -112.2 M
[/View [/XYZ -4 644.800293 null] /Dest /17 /DEST pdfmark
0 -112.2 M
[/View [/XYZ -4 644.800293 null] /Dest /18 /DEST pdfmark
0 -131.2 M
%%IncludeResource: font Times-Bold
15 2 Nf
(4.\240) S
[/View [/XYZ -4 643.800293 null] /Dest /112 /DEST pdfmark
( ) S
(Messages) S
0 -155.4 M
11 0 Nf
0.67737633 0 32 0 0 (In this section, formats and requirements of the headers for each message are presented. The allowed) A
0 -168.6 M
3.57467651 0 32 0 0 (type for values for each header field is shown in parenthesis after the key names. The type) A
0 -181.8 M
0.0527191162 0 32 0 0 ("algorithm-determined" means that the acceptable value type for the field is one of the types defined in ) A
0 -195 M
(Section\2403) S
[/Rect [-1.0 -197.749512 42.2492676 -185.649506] /Subtype /Link /Border [0 0 1] /Dest /8 /ANN pdfmark
(, and is determined by the value of the "algorithm" field. ) S
0 -219.2 M
0.699630737 0 32 0 0 (Note: The term "optional" here means that omitting the field is allowed and has specific meanings in) A
0 -232.4 M
(communications \(i.e.\240it is not generally "OPTIONAL" defined in ) S
([RFC2119]) S
[/Rect [287.52417 -235.149414 339.639648 -223.049408] /Subtype /Link /Border [0 0 1] /Dest /71 /ANN pdfmark
(\). ) S
0 -243.4 M
[/View [/XYZ -4 513.600586 null] /Dest /19 /DEST pdfmark
0 -243.4 M
[/View [/XYZ -4 513.600586 null] /Dest /20 /DEST pdfmark
0 -262.4 M
15 2 Nf
(4.1.\240) S
[/View [/XYZ -4 512.600586 null] /Dest /113 /DEST pdfmark
( ) S
(401-B0) S
0 -286.6 M
11 0 Nf
0.917989075 0 32 0 0 (Every 401-B0 message SHALL be a valid HTTP 401 \(Authentication Required\) message containing) A
0 -299.8 M
1.80269372 0 32 0 0 (one \(and only one: hereafter not explicitly noticed\) "WWW-Authenticate" header of the following) A
0 -313 M
(format. ) S
0 -337.2 M
(WWW-Authenticate: Mutual algorithm=xxxx, validation=xxxx, realm="xxxx", stale=0 ) S
0 -361.4 M
(The header SHALL contain the fields with the following keys: ) S
11 -385.6 M
(algorithm: ) S
33 -398.8 M
0.281880707 0 32 0 0 (\(extensive-token\) specifies the authentication algorithm to be used. The value MUST be one) A
33 -412 M
4.17578125 0 32 0 0 (of the tokens described in ) A
4.17578125 0 32 0 0 (Section\2407) A
[/Rect [168.662598 -414.749023 211.911865 -402.649017] /Subtype /Link /Border [0 0 1] /Dest /36 /ANN pdfmark
4.17578125 0 32 0 0 (, or the tokens specified in other supplemental) A
33 -425.2 M
(specification documentations. ) S
11 -438.4 M
(validation: ) S
33 -451.6 M
1.36437047 0 32 0 0 (\(extensive-token\) specifies the method of host validation. The value MUST be one of the) A
33 -464.8 M
1.75051045 0 32 0 0 (tokens described in ) A
1.75051045 0 32 0 0 (Section\2408) A
[/Rect [124.930664 -467.548828 168.179932 -455.448822] /Subtype /Link /Border [0 0 1] /Dest /44 /ANN pdfmark
1.75051045 0 32 0 0 (, or the tokens specified in other supplemental specification) A
33 -478 M
(documentations. ) S
11 -491.2 M
(realm: ) S
33 -504.4 M
(\(string\) is a UTF-8 encoded name of the authentication domain inside the server. ) S
11 -517.6 M
(pwd-hash: ) S
33 -530.8 M
3.94746542 0 32 0 0 (\(optional, extensive-token\) specifies the hash algorithm \(referred to by ph\) used for) A
33 -544 M
(additionally hashing the password. The valid tokens are ) S
44 -554.6 M
gsave
0 setgray
newpath
44.0 -554.568604 2.75 0 360 arc
closepath
fill
grestore
55 -558.2 M
(none: ph\(p\) = p ) S
44 -568.8 M
gsave
0 setgray
newpath
44.0 -568.768555 2.75 0 360 arc
closepath
fill
grestore
55 -572.4 M
(md5: ph\(p\) = MD5\(p\) ) S
44 -583 M
gsave
0 setgray
newpath
44.0 -582.968506 2.75 0 360 arc
closepath
fill
grestore
55 -586.6 M
0.595703125 0 32 0 0 (digest-md5: ph\(p\) = MD5\(username | ":" | realm | ":" | p\), the same value as MD5\(A1\)) A
55 -599.8 M
(for "MD5" algorithm in ) S
([RFC2617]) S
[/Rect [161.35791 -602.54834 213.473389 -590.448364] /Subtype /Link /Border [0 0 1] /Dest /85 /ANN pdfmark
(. ) S
44 -610.4 M
gsave
0 setgray
newpath
44.0 -610.368408 2.75 0 360 arc
closepath
fill
grestore
55 -614 M
(sha1: ph\(p\) = ) S
(SHA1\(p\)) S
33 -627.2 M
(If omitted, the value "none" is assumed. The use of "none" is recommended. ) S
11 -640.4 M
(auth-domain: ) S
33 -653.6 M
(\(optional, string\) MUST currently be one of the following strings. ) S
44 -664.2 M
gsave
0 setgray
newpath
44.0 -664.168213 2.75 0 360 arc
closepath
fill
grestore
55 -667.8 M
(the host part of the requested URI, ) S
55 -668.8 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 6 -) S
0 setgray
110 -8 M
grestore
pgsave restore N
%%Page: 7 7
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
44 -9.6 M
gsave
0 setgray
newpath
44.0 -9.57006836 2.75 0 360 arc
closepath
fill
grestore
55 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
0.0859187171 0 32 0 0 (the string in format "scheme://host:port", where scheme, host and port are the URI parts) A
55 -13.2 M
0.903360665 0.903360665 scale
0.0 -13.2 RM
11 0 Nf
(of the requested URI. The scheme and host are in lower-case, and the port is in a shortest decimal) S
1.10697758 1.10697758 scale
55 -25.1 M
0.915694356 0.915694356 scale
0.0 -13.2 RM
(representation. Even if the request-URI does not have a port part, the string will include the ) S
(one.) S
1.09206748 1.09206748 scale
33 -50.4 M
0.755820811 0 32 0 0 (If the value is omitted, it is assumed to be the host part of the requested URI. The triple of) A
33 -63.6 M
0.754125953 0 32 0 0 (auth-domain, algorithm, and realm determines the "authentication realm" which defines the) A
33 -76.8 M
(area where the same user-name and passwords are applicable. ) S
11 -90 M
(stale: ) S
33 -103.2 M
(\(token\) MUST be "0". ) S
0 -127.4 M
0.852922738 0 32 0 0 (Any additional fields SHOULD NOT be contained in the header, except those explicitly specified in) A
0 -140.6 M
(supplement specifications of the "authentication algorithm". ) S
0 -164.8 M
(The algorithm will determine the types and the values for w_A, w_B, o_A and o_B. ) S
0 -175.8 M
[/View [/XYZ -4 581.188965 null] /Dest /21 /DEST pdfmark
0 -175.8 M
[/View [/XYZ -4 581.188965 null] /Dest /22 /DEST pdfmark
0 -194.8 M
%%IncludeResource: font Times-Bold
15 2 Nf
(4.2.\240) S
[/View [/XYZ -4 580.188965 null] /Dest /114 /DEST pdfmark
( ) S
(401-B0-stale) S
0 -219 M
11 0 Nf
0.109791473 0 32 0 0 (A 401-B0-stale message is a variant of 401-B0 message, which means that the client has sent a request) A
0 -232.2 M
(message which is not for any active session. ) S
0 -256.4 M
(WWW-Authenticate: Mutual algorithm=xxxx, validation=xxxx, realm="xxxx", stale=1 ) S
0 -280.6 M
(The header MUST contain the same fields as in 401-B0, except that stale field holds the integer 1. ) S
0 -291.6 M
[/View [/XYZ -4 465.38916 null] /Dest /23 /DEST pdfmark
0 -291.6 M
[/View [/XYZ -4 465.38916 null] /Dest /24 /DEST pdfmark
0 -310.6 M
15 2 Nf
(4.3.\240) S
[/View [/XYZ -4 464.38916 null] /Dest /115 /DEST pdfmark
( ) S
(req-A1) S
0 -334.8 M
11 0 Nf
0.277174741 0 32 0 0 (Every req-A1 message SHALL be a valid HTTP request message containing a "Authorization" header) A
0 -348 M
(of the following format. ) S
0 -372.2 M
(Authorization: Mutual algorithm=xxxx, validation=xxxx, realm="xxxx", user="xxxx", wa=xxxx ) S
0 -396.4 M
(The header SHALL contain the fields with the following keys: ) S
11 -420.6 M
(algorithm, validation, auth-domain, realm: ) S
33 -433.8 M
(MUST be the same value as it is received from S. ) S
11 -447 M
(user: ) S
33 -460.2 M
(\(string\) is the UTF-8 encoded name of the user. ) S
11 -473.4 M
(wa: ) S
33 -486.6 M
(\(algorithm-determined\) is the value of w_A specified by the used algorithm. ) S
0 -497.6 M
[/View [/XYZ -4 259.389648 null] /Dest /25 /DEST pdfmark
0 -497.6 M
[/View [/XYZ -4 259.389648 null] /Dest /26 /DEST pdfmark
0 -516.6 M
15 2 Nf
(4.4.\240) S
[/View [/XYZ -4 258.389648 null] /Dest /116 /DEST pdfmark
( ) S
(401-B1) S
0 -540.8 M
11 0 Nf
0.26016 0 32 0 0 (Every 401-B1 message SHALL be a valid HTTP 401 \(Authentication Required\) message containing a) A
0 -554 M
("WWW-Authenticate" header of the following format. ) S
0 -578.2 M
1.63240564 0 32 0 0 (WWW-Authenticate: Mutual algorithm=xxxx, validation=xxxx, realm="xxxx", sid=xxxx, wb=xxxx,) A
0 -591.4 M
(nc-max=x, nc-window=x, time=x, path="xxxx" ) S
0 -615.6 M
(The header SHALL contain the fields with the following keys: ) S
11 -639.8 M
(algorithm, validation, auth-domain, realm: ) S
33 -653 M
(MUST be the same value as it is received from C. ) S
33 -653 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 7 -) S
0 setgray
22 -8 M
grestore
pgsave restore N
%%Page: 8 8
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
11 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
(sid: ) S
33 -26.4 M
1.38801455 0 32 0 0 (\(hex-fixed-number\) MUST be a session id, which is a random integer. The sid SHOULD) A
33 -39.6 M
2.18314028 0 32 0 0 (have uniqueness of at least 80 bits or the square of the maximal estimated transactions) A
33 -52.8 M
2.84694266 0 32 0 0 (concurrently available in the session table, whichever is larger. Sids are local to each) A
33 -66 M
0.676074207 0 32 0 0 (authentication realm concerned: the same sids for different authentication realms SHOULD) A
33 -79.2 M
(be treated as independent ones. ) S
11 -92.4 M
(wb: ) S
33 -105.6 M
(\(algorithm-determined\) is the value of w_B specified by the algorithm. ) S
11 -118.8 M
(nc-max: ) S
33 -132 M
(\(hex-integer\) is the maximal value of nonce counts which S accepts. ) S
11 -145.2 M
(nc-window: ) S
33 -158.4 M
3.34014416 0 32 0 0 (\(hex-integer\) the number of available nonce slots which S will accept. The value of) A
33 -171.6 M
(nc-window is RECOMMENDED to be thirty-two \("20" in hex-integer\) or more. ) S
11 -184.8 M
(time: ) S
33 -198 M
4.12731934 0 32 0 0 (\(integer\) represents the suggested time \(in seconds\) which C can reuse the session) A
33 -211.2 M
1.02392578 0 32 0 0 (represented by sid. It is RECOMMENDED to be at least 60. The value of this field is not) A
33 -224.4 M
(directly linked to the duration that S keeps track of the session represented by sid. ) S
11 -237.6 M
(path: ) S
33 -250.8 M
2.68021345 0 32 0 0 (\(optional, string\) specifies for which path in the URI space the same authentication is) A
33 -264 M
1.11454499 0 32 0 0 (expected to apply. The value is in the same format as it is specified in ) A
1.11454499 0 32 0 0 ([RFC2617]) A
[/Rect [357.887451 -266.749023 410.00293 -254.649017] /Subtype /Link /Border [0 0 1] /Dest /85 /ANN pdfmark
1.11454499 0 32 0 0 ( for the) A
33 -277.2 M
2.75046611 0 32 0 0 (Digest authentications, and clients are RECOMMENDED to recognize it. The all path) A
33 -290.4 M
1.78581357 0 32 0 0 (elements contained in the field MUST be inside the specified auth-domain: if not, client) A
33 -303.6 M
(SHOULD ignore such elements. ) S
0 -314.6 M
[/View [/XYZ -4 442.401123 null] /Dest /27 /DEST pdfmark
0 -314.6 M
[/View [/XYZ -4 442.401123 null] /Dest /28 /DEST pdfmark
0 -333.6 M
%%IncludeResource: font Times-Bold
15 2 Nf
(4.5.\240) S
[/View [/XYZ -4 441.401123 null] /Dest /117 /DEST pdfmark
( ) S
(req-A3) S
0 -357.8 M
11 0 Nf
0.277174741 0 32 0 0 (Every req-A3 message SHALL be a valid HTTP request message containing a "Authorization" header) A
0 -371 M
(of the following format. ) S
0 -395.2 M
(Authorization: Mutual algorithm=xxxx, validation=xxxx, realm="xxxx", sid=xxxx, nc=x, oa=xxxx ) S
0 -419.4 M
(The fields contained in the header is as follows: ) S
11 -443.6 M
(algorithm, validation, auth-domain, realm: ) S
33 -456.8 M
(MUST be the same value as it is received from S for the session. ) S
11 -470 M
(sid: ) S
33 -483.2 M
(\(hex-fixed-number\) MUST be one of the sid values which has been received from S. ) S
11 -496.4 M
(nc: ) S
33 -509.6 M
0.287093103 0 32 0 0 (\(hex-integer\) is a nonce value which is unique among the requests sharing the same sid. The) A
33 -522.8 M
(value of nc SHOULD satisfy the following properties: ) S
44 -533.4 M
gsave
0 setgray
newpath
44.0 -533.368408 2.75 0 360 arc
closepath
fill
grestore
55 -537 M
2.48283386 0 32 0 0 (It is not larger than the nc-max value which has been sent from S in the session) A
55 -550.2 M
(represented by the sid. ) S
44 -560.8 M
gsave
0 setgray
newpath
44.0 -560.768311 2.75 0 360 arc
closepath
fill
grestore
55 -564.4 M
(C have not sent the same value in the same session. ) S
44 -575 M
gsave
0 setgray
newpath
44.0 -574.968262 2.75 0 360 arc
closepath
fill
grestore
55 -578.6 M
0.0680280402 0 32 0 0 (It is not smaller than \(largest-nc - nc-window\), where largest-nc is the maximal value of) A
55 -591.8 M
1.38553059 0 32 0 0 (nc which has previously been sent in the session, and nc-window is the value of the) A
55 -605 M
(nc-window field which has been sent from S in the ) S
(session.) S
11 -618.2 M
(oa: ) S
33 -631.4 M
(\(algorithm-determined\) is the value of o_A specified by the algorithm. ) S
11 -631.4 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 8 -) S
0 setgray
22 -8 M
grestore
pgsave restore N
%%Page: 9 9
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 0 M
[/View [/XYZ -4 757.0 null] /Dest /29 /DEST pdfmark
0 0 M
[/View [/XYZ -4 757.0 null] /Dest /30 /DEST pdfmark
0 -18 M
%%IncludeResource: font Times-Bold
15 2 Nf
(4.6.\240) S
[/View [/XYZ -4 757.0 null] /Dest /118 /DEST pdfmark
( ) S
(200-B4) S
0 -42.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
0.262782514 0 32 0 0 (Every 200-B1 message SHALL be a valid HTTP message which is not 401 \(Authentication Required\)) A
0 -55.4 M
(type, containing an "Authentication-Info" header of the following format. ) S
0 -79.6 M
(Authentication-Info: Mutual sid=xxxx, ob=xxxx ) S
0 -103.8 M
(The fields contained in the header is as follows: ) S
11 -128 M
(sid: ) S
33 -141.2 M
(\(hex-fixed-number\) MUST be the value received from C. ) S
11 -154.4 M
(ob: ) S
33 -167.6 M
(\(algorithm-determined\) is the value of o_B specified by the algorithm. ) S
11 -180.8 M
(logout-timeout: ) S
33 -194 M
0.286464155 0 32 0 0 (\(optional, integer\) is a number of seconds after which the client should re-validate the user's) A
33 -207.2 M
0.634781897 0 32 0 0 (password for the current authentication realm. As a special case, the value 0 means that the) A
33 -220.4 M
0.185400397 0 32 0 0 (client SHOULD automatically forget the user-inputed password to the current authentication) A
33 -233.6 M
1.87755239 0 32 0 0 (realm and revert to the unauthenticated state \(i.e.~server-initiated logout\). This does not,) A
33 -246.8 M
0.435913086 0 32 0 0 (however, mean that the long-term memories for the passwords \(such as password reminders) A
33 -260 M
1.66339111 0 32 0 0 (and auto fill-ins\) should be removed. If a new value of timeout is received for the same) A
33 -273.2 M
(authentication realm, it overrides the previous timeout. ) S
0 -284.2 M
[/View [/XYZ -4 472.800781 null] /Dest /31 /DEST pdfmark
0 -284.2 M
[/View [/XYZ -4 472.800781 null] /Dest /32 /DEST pdfmark
0 -303.2 M
15 2 Nf
(5.\240) S
[/View [/XYZ -4 471.800781 null] /Dest /119 /DEST pdfmark
( Decision procedure for the ) S
(client) S
0 -327.4 M
11 0 Nf
3.19897461 0 32 0 0 (To securely implement the protocol, the user client must be careful to accepting authenticated) A
0 -340.6 M
(responses from the server. ) S
0 -364.8 M
2.36818433 0 32 0 0 (Clients SHOULD implement the decision procedure equivalent to the one shown below. \(Unless) A
0 -378 M
0.0774230957 0 32 0 0 (implementers understand what is required for the security, they should not alter this.\) The labels on the) A
0 -391.2 M
(steps are for informational purpose only. ) S
11 -415.4 M
(Step 1 \(step_new_request\): ) S
33 -428.6 M
2.36834311 0 32 0 0 (If the client software needs to get a new Web resource, check whether the resource is) A
33 -441.8 M
5.29874659 0 32 0 0 (expected to be inside some authentication realm for which the user has already) A
33 -455 M
(authenticated. If yes, go to Step 2. Otherwise, go to Step 5. ) S
11 -468.2 M
(Step 2: ) S
33 -481.4 M
0.695638 0 32 0 0 (Check whether there is an available sid for the authentication realm you expects. If there is) A
33 -494.6 M
(one, go to Step 3. Otherwise, go to Step 4. ) S
11 -507.8 M
(Step 3 \(step_send_a3_1\): ) S
33 -521 M
(Send a req-A3 request. ) S
44 -531.6 M
gsave
0 setgray
newpath
44.0 -531.568604 2.75 0 360 arc
closepath
fill
grestore
55 -535.2 M
0.00381234987 0 32 0 0 (If you receive a 401-B0 message with a different authentication realm than expected, go) A
55 -548.4 M
(to Step 6. ) S
44 -559 M
gsave
0 setgray
newpath
44.0 -558.968506 2.75 0 360 arc
closepath
fill
grestore
55 -562.6 M
(If you receive a 401-B0-stale message, go to Step 9. ) S
44 -573.2 M
gsave
0 setgray
newpath
44.0 -573.168457 2.75 0 360 arc
closepath
fill
grestore
55 -576.8 M
(If you receive a 401-B0 message, go to Step 13. ) S
44 -587.4 M
gsave
0 setgray
newpath
44.0 -587.368408 2.75 0 360 arc
closepath
fill
grestore
55 -591 M
(If you receive a valid 200-B4 message, go to Step 14. ) S
44 -601.6 M
gsave
0 setgray
newpath
44.0 -601.568359 2.75 0 360 arc
closepath
fill
grestore
55 -605.2 M
(If you receive a normal response \(without Mutual-specific headers\), go to Step ) S
(11.) S
11 -618.4 M
(Step 4 \(step_send_a1_1\): ) S
33 -631.6 M
(Send a req-A1 request. ) S
44 -642.2 M
gsave
0 setgray
newpath
44.0 -642.168213 2.75 0 360 arc
closepath
fill
grestore
55 -645.8 M
0.00381234987 0 32 0 0 (If you receive a 401-B0 message with a different authentication realm than expected, go) A
55 -659 M
(to Step 6. ) S
55 -660 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 9 -) S
0 setgray
110 -8 M
grestore
pgsave restore N
%%Page: 10 10
%%PageResources: font Times-Roman Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
44 -9.6 M
gsave
0 setgray
newpath
44.0 -9.57006836 2.75 0 360 arc
closepath
fill
grestore
55 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
(If you receive a 401-B0-stale message, go to Step 9. ) S
44 -23.8 M
gsave
0 setgray
newpath
44.0 -23.7700195 2.75 0 360 arc
closepath
fill
grestore
55 -27.4 M
11 0 Nf
(If you receive a 401-B1 message, go to Step 10. ) S
44 -38 M
gsave
0 setgray
newpath
44.0 -37.9699707 2.75 0 360 arc
closepath
fill
grestore
55 -41.6 M
(If you receive a normal response \(without Mutual-specific headers\), go to Step ) S
(10.) S
11 -54.8 M
(Step 5 \(step_send_normal_1\): ) S
33 -68 M
(Send a request without any authentication headers. ) S
44 -78.6 M
gsave
0 setgray
newpath
44.0 -78.5698242 2.75 0 360 arc
closepath
fill
grestore
55 -82.2 M
(If you receive a 401-B0 message, go to Step 6. ) S
44 -92.8 M
gsave
0 setgray
newpath
44.0 -92.7697754 2.75 0 360 arc
closepath
fill
grestore
55 -96.4 M
(If you receive a normal response \(without Mutual-specific headers\), go to Step ) S
(11.) S
11 -109.6 M
(Step 6 \(step_rcvd_b0\): ) S
33 -122.8 M
0.403188854 0 32 0 0 (Check whether you know the user's password for the requested authentication realm. If yes,) A
33 -136 M
(go to Step 7. Otherwise, go to Step 12. ) S
11 -149.2 M
(Step 7: ) S
33 -162.4 M
0.695638 0 32 0 0 (Check whether there is an available sid for the authentication realm you expects. If there is) A
33 -175.6 M
(one, go to Step 8. Otherwise, go to Step 9. ) S
11 -188.8 M
(Step 8 \(step_send_a3\): ) S
33 -202 M
(Send a req-A3 request. ) S
44 -212.6 M
gsave
0 setgray
newpath
44.0 -212.569336 2.75 0 360 arc
closepath
fill
grestore
55 -216.2 M
0.00381234987 0 32 0 0 (If you receive a 401-B0 message with a different authentication realm than expected, go) A
55 -229.4 M
(to Step 6. ) S
44 -240 M
gsave
0 setgray
newpath
44.0 -239.969238 2.75 0 360 arc
closepath
fill
grestore
55 -243.6 M
(If you receive a 401-B0-stale message, go to Step 9. ) S
44 -254.2 M
gsave
0 setgray
newpath
44.0 -254.169189 2.75 0 360 arc
closepath
fill
grestore
55 -257.8 M
(If you receive a 401-B0 message, go to Step 13. ) S
44 -268.4 M
gsave
0 setgray
newpath
44.0 -268.369141 2.75 0 360 arc
closepath
fill
grestore
55 -272 M
(If you receive a valid 200-B4 message, go to Step ) S
(14.) S
11 -285.2 M
(Step 9 \(step_send_a1\): ) S
33 -298.4 M
(Send a req-A1 request. ) S
44 -309 M
gsave
0 setgray
newpath
44.0 -308.969 2.75 0 360 arc
closepath
fill
grestore
55 -312.6 M
(If you receive a 401-B1 message, go to Step ) S
(10.) S
11 -325.8 M
(Step 10 \(step_rcvd_b1\): ) S
33 -339 M
(Send a req-A3 request. ) S
44 -349.6 M
gsave
0 setgray
newpath
44.0 -349.568848 2.75 0 360 arc
closepath
fill
grestore
55 -353.2 M
(If you receive a 401-B0 message, go to Step 13. ) S
44 -363.8 M
gsave
0 setgray
newpath
44.0 -363.768799 2.75 0 360 arc
closepath
fill
grestore
55 -367.4 M
(If you receive a valid 200-B4 message, go to Step ) S
(14.) S
11 -380.6 M
(Step 11 \(step_rcvd_normal\): ) S
33 -393.8 M
0.695670545 0 32 0 0 (This case means that the resource requested is out of the authenticated area. The client will) A
33 -407 M
(be in "UNAUTHENTICATED" status. ) S
11 -420.2 M
(Step 12 \(step_rcvd_b0_unknown\): ) S
33 -433.4 M
0.849215 0 32 0 0 (This case means that the resource requested requires Mutual authentication, and the user is) A
33 -446.6 M
7.16687 0 32 0 0 (not authenticated yet. The client will be in "AUTH_REQUESTED" status, is) A
33 -459.8 M
0.48280552 0 32 0 0 (RECOMMENDED to process the content sent from the server and ask user a username and) A
33 -473 M
(password. If the user has input those, go to Step 9. ) S
11 -486.2 M
(Step 13 \(step_rcvd_b0_failed\): ) S
33 -499.4 M
0.698939741 0 32 0 0 (This case means that in some reason the authentication failed: possibly the password or the) A
33 -512.6 M
5.89144611 0 32 0 0 (username is invalid for the authenticated resource. Forget the password for the) A
33 -525.8 M
(authentication realm and go to Step 12. ) S
11 -539 M
(Step 14 \(step_rcvd_b4\): ) S
33 -552.2 M
1.50742888 0 32 0 0 (This case means that the mutual authentication has been succeeded. The client will be in) A
33 -565.4 M
("AUTH_SUCCEEDED" status. ) S
0 -589.6 M
3.53841734 0 32 0 0 (All other kind of responses than shown in above procedure SHOULD be interpreted as fatal) A
0 -602.8 M
0.410367846 0 32 0 0 (communication error, and in such cases user clients MUST NOT process any data \(contents and other) A
0 -616 M
(content-related headers\) sent from the server. ) S
0 -640.2 M
(The client software SHOULD show the three client status to the end-user. ) S
0 -640.2 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 10 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 11 11
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
(Figure\2402) S
[/Rect [-1.0 -15.9499512 37.970459 -3.84995079] /Subtype /Link /Border [0 0 1] /Dest /33 /ANN pdfmark
( shows the full client-side state diagram. ) S
0 -24.2 M
gsave
0.6 setlinewidth
0 setgray
454.0 0 RL
stroke
grestore
0.0 -11.0 RM
0 -35.2 M
[/View [/XYZ -4 721.800049 null] /Dest /33 /DEST pdfmark
0 -429.2 M
gsave
0.0 -429.199951 translate
/IS 1 D
save
0 0 M
IS IS scale
/showpage {}D
-71 -427 translate
/tgifdict 53 dict def
tgifdict begin
/tgifarrowtipdict 8 dict def
tgifarrowtipdict /mtrx matrix put
/TGAT % tgifarrowtip
{ tgifarrowtipdict begin
/dy exch def
/dx exch def
/h exch def
/w exch def
/y exch def
/x exch def
/savematrix mtrx currentmatrix def
x y translate
dy dx atan rotate
0 0 moveto
w neg h lineto
w neg h neg lineto
savematrix setmatrix
end
} def
/TGMAX
{ exch dup 3 1 roll exch dup 3 1 roll gt { pop } { exch pop } ifelse
} def
/TGMIN
{ exch dup 3 1 roll exch dup 3 1 roll lt { pop } { exch pop } ifelse
} def
/TGSW { stringwidth pop } def
/bd { bind def } bind def
/GS { gsave } bd
/GR { grestore } bd
/NP { newpath } bd
/CP { closepath } bd
/CHP { charpath } bd
/CT { curveto } bd
/L { lineto } bd
/RL { rlineto } bd
/M { moveto } bd
/RM { rmoveto } bd
/S { stroke } bd
/F { fill } bd
/TR { translate } bd
/RO { rotate } bd
/SC { scale } bd
/MU { mul } bd
/DI { div } bd
/DU { dup } bd
/NE { neg } bd
/AD { add } bd
/SU { sub } bd
/PO { pop } bd
/EX { exch } bd
/CO { concat } bd
/CL { clip } bd
/EC { eoclip } bd
/EF { eofill } bd
/IM { image } bd
/IMM { imagemask } bd
/ARY { array } bd
/SG { setgray } bd
/RG { setrgbcolor } bd
/SD { setdash } bd
/W { setlinewidth } bd
/SM { setmiterlimit } bd
/SLC { setlinecap } bd
/SLJ { setlinejoin } bd
/SH { show } bd
/FF { findfont } bd
/MS { makefont setfont } bd
/AR { arcto 4 {pop} repeat } bd
/CURP { currentpoint } bd
/FLAT { flattenpath strokepath clip newpath } bd
/TGSM { tgiforigctm setmatrix } def
/TGRM { savematrix setmatrix } def
end
tgifdict begin
/tgifsavedpage save def
1 SM
1 W
0 SG
72 0 MU 72 11.602 MU TR
72 128 DI 100.000 MU 100 DI DU NE SC
GS
/tgiforigctm matrix currentmatrix def
NP
0 SG
GS
1 W
250 45 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(NEW REQUEST) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(NEW REQUEST) DU TGSW EX SH
GS CURP M 0 2 RM NE 0 RL S GR
GR
GR
0 SG
NP
250 95 M
180 125 L
250 155 L
320 125 L
CP
GS
GR
GS
S
GR
NP
0 SG
GS
1 W
250 120 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(the requested URI) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(the requested URI) SH
GR
0 15 RM
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(known to be authed?) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(known to be authed?) SH
GR
GR
0 SG
GS
NP
250 50 M
45 0 atan DU cos 8.000 MU 250 exch SU
exch sin 8.000 MU 95 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
250 95 8.000 3.000 0 45 TGAT
1 SG CP F
0 SG
NP
250 95 8.000 3.000 0 45 TGAT
CP F
GR
0 SG
GS
GS
NP
684 100 M
700 100 700 150 16 AR
700 134 L
700 150 600 150 16 AR
616 150 L
600 150 600 100 16 AR
600 116 L
600 100 700 100 16 AR
CP
S
GR
GR
NP
0 SG
GS
1 W
650 120 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(send) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(send) SH
GR
0 15 RM
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(normal request) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(normal request) SH
GR
GR
0 SG
GS
NP
600 105 M
-35 -55 atan DU cos 8.000 MU 545 exch SU
exch sin 8.000 MU 70 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
545 70 8.000 3.000 -55 -35 TGAT
1 SG CP F
0 SG
NP
545 70 8.000 3.000 -55 -35 TGAT
CP F
GR
NP
0 SG
GS
1 W
480 75 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(UNAUTHENTICATED) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(UNAUTHENTICATED) DU TGSW EX SH
GS CURP M 0 2 RM NE 0 RL S GR
GR
GR
0 SG
GS
NP
320 125 M
0 280 atan DU cos 8.000 MU 600 exch SU
exch sin 8.000 MU 125 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
600 125 8.000 3.000 280 0 TGAT
1 SG CP F
0 SG
NP
600 125 8.000 3.000 280 0 TGAT
CP F
GR
NP
0 SG
GS
1 W
540 100 M
GS
GS
0
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(normal-res.) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(normal-res.) SH
GR
GR
0 SG
NP
650 195 M
580 225 L
650 255 L
720 225 L
CP
GS
GR
GS
S
GR
NP
0 SG
GS
1 W
650 220 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(user/pass) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(user/pass) SH
GR
0 15 RM
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(known?) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(known?) SH
GR
GR
0 SG
GS
NP
650 150 M
45 0 atan DU cos 8.000 MU 650 exch SU
exch sin 8.000 MU 195 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
650 195 8.000 3.000 0 45 TGAT
1 SG CP F
0 SG
NP
650 195 8.000 3.000 0 45 TGAT
CP F
GR
NP
0 SG
GS
1 W
660 165 M
GS
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(401-B0) SH
GR
0 15 RM
GS
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(200-optional-B0) SH
GR
GR
0 SG
GS
NP
590 230 M
25 -55 atan DU cos 8.000 MU 535 exch SU
exch sin 8.000 MU 255 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
535 255 8.000 3.000 -55 25 TGAT
1 SG CP F
0 SG
NP
535 255 8.000 3.000 -55 25 TGAT
CP F
GR
NP
0 SG
GS
1 W
475 260 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(AUTH_REQUESTED) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(AUTH_REQUESTED) DU TGSW EX SH
GS CURP M 0 2 RM NE 0 RL S GR
GR
GR
NP
0 SG
GS
1 W
550 230 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(NO) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(NO) SH
GR
GR
NP
0 SG
GS
1 W
350 115 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(NO) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(NO) SH
GR
GR
0 SG
NP
250 295 M
180 325 L
250 355 L
320 325 L
CP
GS
GR
GS
S
GR
NP
0 SG
GS
1 W
250 320 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(session) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(session) SH
GR
0 15 RM
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(available?) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(available?) SH
GR
GR
0 SG
GS
NP
250 155 M
140 0 atan DU cos 8.000 MU 250 exch SU
exch sin 8.000 MU 295 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
250 295 8.000 3.000 0 140 TGAT
1 SG CP F
0 SG
NP
250 295 8.000 3.000 0 140 TGAT
CP F
GR
0 SG
GS
GS
NP
284 400 M
300 400 300 450 16 AR
300 434 L
300 450 200 450 16 AR
216 450 L
200 450 200 400 16 AR
200 416 L
200 400 300 400 16 AR
CP
S
GR
GR
NP
0 SG
GS
1 W
250 420 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(send) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(send) SH
GR
0 15 RM
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(req-A3) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(req-A3) SH
GR
GR
0 SG
GS
NP
250 355 M
45 0 atan DU cos 8.000 MU 250 exch SU
exch sin 8.000 MU 400 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
250 400 8.000 3.000 0 45 TGAT
1 SG CP F
0 SG
NP
250 400 8.000 3.000 0 45 TGAT
CP F
GR
NP
0 SG
GS
1 W
190 715 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(UNAUTHENTICATED) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(UNAUTHENTICATED) DU TGSW EX SH
GS CURP M 0 2 RM NE 0 RL S GR
GR
GR
0 SG
GS
NP
200 430 M
180 480 L
215 0 atan DU cos 8.000 MU 180 exch SU
exch sin 8.000 MU 695 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
180 695 8.000 3.000 0 215 TGAT
1 SG CP F
0 SG
NP
180 695 8.000 3.000 0 215 TGAT
CP F
GR
NP
0 SG
GS
1 W
215 640 M
GS
GS
0
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(normal-res.) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(normal-res.) SH
GR
GR
0 SG
GS
NP
300 425 M
0 90 atan DU cos 8.000 MU 390 exch SU
exch sin 8.000 MU 425 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
390 425 8.000 3.000 90 0 TGAT
1 SG CP F
0 SG
NP
390 425 8.000 3.000 90 0 TGAT
CP F
GR
NP
0 SG
GS
1 W
340 415 M
GS
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(401-B0) SH
GR
GR
NP
0 SG
GS
1 W
450 430 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(AUTH_REQUESTED) TGSW
AD
/Times-Roman FF [12 0 0 -12 0 0] MS
(:) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(AUTH_REQUESTED) DU TGSW EX SH
GS CURP M 0 2 RM NE 0 RL S GR
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(:) SH
GR
0 15 RM
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(forget user/pass) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(forget user/pass) SH
GR
GR
0 SG
GS
NP
180 325 M
180 460 L
250 480 L
20 0 atan DU cos 8.000 MU 250 exch SU
exch sin 8.000 MU 500 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
250 500 8.000 3.000 0 20 TGAT
1 SG CP F
0 SG
NP
250 500 8.000 3.000 0 20 TGAT
CP F
GR
0 SG
GS
GS
NP
284 500 M
300 500 300 550 16 AR
300 534 L
300 550 200 550 16 AR
216 550 L
200 550 200 500 16 AR
200 516 L
200 500 300 500 16 AR
CP
S
GR
GR
NP
0 SG
GS
1 W
250 520 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(send) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(send) SH
GR
0 15 RM
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(req-A1) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(req-A1) SH
GR
GR
NP
0 SG
GS
1 W
165 345 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(NO) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(NO) SH
GR
GR
0 SG
GS
NP
200 525 M
180 555 L
140 0 atan DU cos 8.000 MU 180 exch SU
exch sin 8.000 MU 695 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
180 695 8.000 3.000 0 140 TGAT
1 SG CP F
0 SG
NP
180 695 8.000 3.000 0 140 TGAT
CP F
GR
0 SG
GS
NP
450 600 M
-150 0 atan DU cos 8.000 MU 450 exch SU
exch sin 8.000 MU 450 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
450 450 8.000 3.000 0 -150 TGAT
1 SG CP F
0 SG
NP
450 450 8.000 3.000 0 -150 TGAT
CP F
GR
NP
0 SG
GS
1 W
460 580 M
GS
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(401-B0) SH
GR
GR
NP
0 SG
GS
1 W
450 720 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(AUTH_SUCCEED) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(AUTH_SUCCEED) DU TGSW EX SH
GS CURP M 0 2 RM NE 0 RL S GR
GR
GR
0 SG
GS
NP
250 550 M
80 150 atan DU cos 8.000 MU 400 exch SU
exch sin 8.000 MU 630 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
400 630 8.000 3.000 150 80 TGAT
1 SG CP F
0 SG
NP
400 630 8.000 3.000 150 80 TGAT
CP F
GR
0 SG
GS
NP
295 445 M
250 105 atan DU cos 8.000 MU 400 exch SU
exch sin 8.000 MU 695 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
400 695 8.000 3.000 105 250 TGAT
1 SG CP F
0 SG
NP
400 695 8.000 3.000 105 250 TGAT
CP F
GR
NP
0 SG
GS
1 W
350 552 M
GS
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(200-B4) SH
GR
GR
NP
0 SG
GS
1 W
250 585 M
GS
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(401-B1) SH
GR
GR
0 SG
GS
GS
NP
484 600 M
500 600 500 650 16 AR
500 634 L
500 650 400 650 16 AR
416 650 L
400 650 400 600 16 AR
400 616 L
400 600 500 600 16 AR
CP
S
GR
GR
NP
0 SG
GS
1 W
450 620 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(send) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(send) SH
GR
0 15 RM
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(req-A3) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(req-A3) SH
GR
GR
NP
0 SG
GS
1 W
455 682 M
GS
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(200-B4) SH
GR
GR
0 SG
GS
NP
450 650 M
45 0 atan DU cos 8.000 MU 450 exch SU
exch sin 8.000 MU 695 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
450 695 8.000 3.000 0 45 TGAT
1 SG CP F
0 SG
NP
450 695 8.000 3.000 0 45 TGAT
CP F
GR
0 SG
NP
650 295 M
580 325 L
650 355 L
720 325 L
CP
GS
GR
GS
S
GR
NP
0 SG
GS
1 W
650 320 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(session) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(session) SH
GR
0 15 RM
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(available?) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(available?) SH
GR
GR
0 SG
GS
GS
NP
684 400 M
700 400 700 450 16 AR
700 434 L
700 450 600 450 16 AR
616 450 L
600 450 600 400 16 AR
600 416 L
600 400 700 400 16 AR
CP
S
GR
GR
NP
0 SG
GS
1 W
650 420 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(send) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(send) SH
GR
0 15 RM
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(req-A3) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(req-A3) SH
GR
GR
0 SG
GS
NP
650 355 M
45 0 atan DU cos 8.000 MU 650 exch SU
exch sin 8.000 MU 400 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
650 400 8.000 3.000 0 45 TGAT
1 SG CP F
0 SG
NP
650 400 8.000 3.000 0 45 TGAT
CP F
GR
0 SG
GS
GS
NP
684 500 M
700 500 700 550 16 AR
700 534 L
700 550 600 550 16 AR
616 550 L
600 550 600 500 16 AR
600 516 L
600 500 700 500 16 AR
CP
S
GR
GR
NP
0 SG
GS
1 W
650 520 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(send) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(send) SH
GR
0 15 RM
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(req-A1) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(req-A1) SH
GR
GR
0 SG
GS
NP
650 255 M
40 0 atan DU cos 8.000 MU 650 exch SU
exch sin 8.000 MU 295 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
650 295 8.000 3.000 0 40 TGAT
1 SG CP F
0 SG
NP
650 295 8.000 3.000 0 40 TGAT
CP F
GR
NP
0 SG
GS
1 W
520 415 M
GS
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(401-B0) SH
GR
GR
0 SG
GS
NP
600 425 M
0 -90 atan DU cos 8.000 MU 510 exch SU
exch sin 8.000 MU 425 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
510 425 8.000 3.000 -90 0 TGAT
1 SG CP F
0 SG
NP
510 425 8.000 3.000 -90 0 TGAT
CP F
GR
0 SG
GS
NP
720 325 M
720 465 L
650 480 L
20 0 atan DU cos 8.000 MU 650 exch SU
exch sin 8.000 MU 500 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
650 500 8.000 3.000 0 20 TGAT
1 SG CP F
0 SG
NP
650 500 8.000 3.000 0 20 TGAT
CP F
GR
NP
0 SG
GS
1 W
625 580 M
GS
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(401-B1) SH
GR
GR
0 SG
GS
NP
650 550 M
75 -150 atan DU cos 8.000 MU 500 exch SU
exch sin 8.000 MU 625 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
500 625 8.000 3.000 -150 75 TGAT
1 SG CP F
0 SG
NP
500 625 8.000 3.000 -150 75 TGAT
CP F
GR
0 SG
GS
NP
605 445 M
250 -105 atan DU cos 8.000 MU 500 exch SU
exch sin 8.000 MU 695 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
500 695 8.000 3.000 -105 250 TGAT
1 SG CP F
0 SG
NP
500 695 8.000 3.000 -105 250 TGAT
CP F
GR
NP
0 SG
GS
1 W
520 552 M
GS
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(200-B4) SH
GR
GR
0 SG
GS
NP
300 440 M
65 305 atan DU cos 8.000 MU 605 exch SU
exch sin 8.000 MU 505 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
605 505 8.000 3.000 305 65 TGAT
1 SG CP F
0 SG
NP
605 505 8.000 3.000 305 65 TGAT
CP F
GR
0 SG
GS
NP
625 450 M
50 0 atan DU cos 8.000 MU 625 exch SU
exch sin 8.000 MU 500 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
625 500 8.000 3.000 0 50 TGAT
1 SG CP F
0 SG
NP
625 500 8.000 3.000 0 50 TGAT
CP F
GR
NP
0 SG
GS
1 W
360 480 M
GS
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(401-B0-stale) SH
GR
GR
NP
0 SG
GS
1 W
630 465 M
GS
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(401-B0-stale) SH
GR
GR
NP
0 SG
GS
1 W
735 345 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(NO) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(NO) SH
GR
GR
NP
0 SG
GS
1 W
670 280 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(YES) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(YES) SH
GR
GR
NP
0 SG
GS
1 W
235 170 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(YES) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(YES) SH
GR
GR
NP
0 SG
GS
1 W
265 370 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(YES) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(YES) SH
GR
GR
NP
0 SG
GS
1 W
635 375 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(YES) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(YES) SH
GR
GR
NP
0 SG
GS
1 W
775 45 M
GS
GS
0
/Times-Roman FF [12 0 0 -12 0 0] MS
(USER/PASS INPUTED) TGSW
AD
GR
2 DI NE 0 RM
0 SG
/Times-Roman FF [12 0 0 -12 0 0] MS
(USER/PASS INPUTED) DU TGSW EX SH
GS CURP M 0 2 RM NE 0 RL S GR
GR
GR
0 SG
GS
NP
780 50 M
780 470 L
35 -85 atan DU cos 8.000 MU 695 exch SU
exch sin 8.000 MU 505 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
695 505 8.000 3.000 -85 35 TGAT
1 SG CP F
0 SG
NP
695 505 8.000 3.000 -85 35 TGAT
CP F
GR
0 SG
GS
NP
295 405 M
330 355 L
330 180 L
0 320 atan DU cos 8.000 MU 650 exch SU
exch sin 8.000 MU 180 exch SU L
TGSM
1 W
S
GR
GS
TGSM
NP
650 180 8.000 3.000 320 0 TGAT
1 SG CP F
0 SG
NP
650 180 8.000 3.000 320 0 TGAT
CP F
GR
NP
0 SG
GS
1 W
345 160 M
GS
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
(401-B0, 200-optional-B0) SH
GR
0 15 RM
GS
0 SG
/Times-BoldItalic FF [12 0 0 -12 0 0] MS
( with different realm ) SH
GR
GR
0 SG
GS
NP
295 505 M
330 460 L
330 355 L
TGSM
1 W
S
GR
NP
0 SG
GS
1 W
195 105 M
GS
0 SG
/Helvetica FF [12 0 0 -12 0 0] MS
(\(1\)) SH
GR
GR
NP
0 SG
GS
1 W
200 325 M
GS
0 SG
/Helvetica FF [12 0 0 -12 0 0] MS
(\(2\)) SH
GR
GR
NP
0 SG
GS
1 W
210 415 M
GS
0 SG
/Helvetica FF [12 0 0 -12 0 0] MS
(\(3\)) SH
GR
GR
NP
0 SG
GS
1 W
210 515 M
GS
0 SG
/Helvetica FF [12 0 0 -12 0 0] MS
(\(4\)) SH
GR
GR
NP
0 SG
GS
1 W
610 115 M
GS
0 SG
/Helvetica FF [12 0 0 -12 0 0] MS
(\(5\)) SH
GR
GR
NP
0 SG
GS
1 W
605 330 M
GS
0 SG
/Helvetica FF [12 0 0 -12 0 0] MS
(\(7\)) SH
GR
GR
NP
0 SG
GS
1 W
610 415 M
GS
0 SG
/Helvetica FF [12 0 0 -12 0 0] MS
(\(8\)) SH
GR
GR
NP
0 SG
GS
1 W
610 515 M
GS
0 SG
/Helvetica FF [12 0 0 -12 0 0] MS
(\(9\)) SH
GR
GR
NP
0 SG
GS
1 W
600 230 M
GS
0 SG
/Helvetica FF [12 0 0 -12 0 0] MS
(\(6\)) SH
GR
GR
NP
0 SG
GS
1 W
390 75 M
GS
0 SG
/Helvetica FF [12 0 0 -12 0 0] MS
(\(11\)) SH
GR
GR
NP
0 SG
GS
1 W
130 695 M
GS
0 SG
/Helvetica FF [12 0 0 -12 0 0] MS
(\(11\)) SH
GR
GR
NP
0 SG
GS
1 W
415 240 M
GS
0 SG
/Helvetica FF [12 0 0 -12 0 0] MS
(\(12\)) SH
GR
GR
NP
0 SG
GS
1 W
395 410 M
GS
0 SG
/Helvetica FF [12 0 0 -12 0 0] MS
(\(13\)) SH
GR
GR
NP
0 SG
GS
1 W
410 615 M
GS
0 SG
/Helvetica FF [12 0 0 -12 0 0] MS
(\(10\)) SH
GR
GR
NP
0 SG
GS
1 W
410 700 M
GS
0 SG
/Helvetica FF [12 0 0 -12 0 0] MS
(\(14\)) SH
GR
GR
GR
tgifsavedpage restore
end
showpage
restore
grestore
400.0 0.0 RM
169 -452.1 M
%%IncludeResource: font Times-Bold
7.63889 2 Nf
(\240Figure\2402: State diagram for ) S
(clients\240) S
0 -466 M
gsave
0.6 setlinewidth
0 setgray
454.0 0 RL
stroke
grestore
0.0 -11.0 RM
0 -477 M
[/View [/XYZ -4 279.951904 null] /Dest /34 /DEST pdfmark
0 -477 M
[/View [/XYZ -4 279.951904 null] /Dest /35 /DEST pdfmark
0 -496 M
15 2 Nf
(6.\240) S
[/View [/XYZ -4 278.951904 null] /Dest /120 /DEST pdfmark
( Decision procedure for the ) S
(server) S
0 -520.2 M
11 0 Nf
(Servers SHOULD respond to the client requests according to the following procedure: ) S
11 -540.8 M
gsave
0 setgray
newpath
11.0 -540.818115 2.75 0 360 arc
closepath
fill
grestore
22 -544.4 M
(When the server receives a normal request: ) S
33 -555 M
gsave
0 setgray
newpath
33.0 -555.018066 2.75 0 360 arc
closepath
stroke
grestore
44 -558.6 M
(If the requested resource is not protected by Mutual Authentication, send a normal response. ) S
33 -569.2 M
gsave
0 setgray
newpath
33.0 -569.218 2.75 0 360 arc
closepath
stroke
grestore
44 -572.8 M
(If the resource is protected by Mutual Authentication, send a 401-B0 response. ) S
33 -583.4 M
gsave
0 setgray
newpath
33.0 -583.417969 2.75 0 360 arc
closepath
stroke
grestore
44 -587 M
0.916503906 0 32 0 0 (If the resource is protected by Mutual Authentication with Optional Mutual Authentication) A
44 -600.2 M
(extension ) S
(\() S
(Section\24010) S
[/Rect [91.5749512 -602.997803 140.324219 -590.897827] /Subtype /Link /Border [0 0 1] /Dest /48 /ANN pdfmark
(\), send a 200-Optional-B0 ) S
(response.) S
11 -610.8 M
gsave
0 setgray
newpath
11.0 -610.817871 2.75 0 360 arc
closepath
fill
grestore
22 -614.4 M
(When the server receives a req-A1 request: ) S
33 -625 M
gsave
0 setgray
newpath
33.0 -625.017822 2.75 0 360 arc
closepath
stroke
grestore
44 -628.6 M
(If the requested resource is not protected by Mutual Authentication, send a normal response. ) S
33 -639.2 M
gsave
0 setgray
newpath
33.0 -639.217773 2.75 0 360 arc
closepath
stroke
grestore
44 -642.8 M
2.40097284 0 32 0 0 (If the authentication realm specified in the req-A1 request is non-expected one, send a) A
44 -656 M
(401-B0 \(or 200-Optional-B0\) response. ) S
33 -666.6 M
gsave
0 setgray
newpath
33.0 -666.617676 2.75 0 360 arc
closepath
stroke
grestore
44 -670.2 M
(If the server cannot validate field wa, send a 401-B0 response. ) S
44 -671.2 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 11 -) S
0 setgray
88 -8 M
grestore
pgsave restore N
%%Page: 12 12
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
33 -9.6 M
gsave
0 setgray
newpath
33.0 -9.57006836 2.75 0 360 arc
closepath
stroke
grestore
44 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
(If the received user name is invalid, send a fake 401-B1 response. ) S
33 -23.8 M
gsave
0 setgray
newpath
33.0 -23.7700195 2.75 0 360 arc
closepath
stroke
grestore
44 -27.4 M
11 0 Nf
(Otherwise, send a 401-B1 ) S
(response.) S
11 -38 M
gsave
0 setgray
newpath
11.0 -37.9699707 2.75 0 360 arc
closepath
fill
grestore
22 -41.6 M
(When the server receives a req-A3 request: ) S
33 -52.2 M
gsave
0 setgray
newpath
33.0 -52.1699219 2.75 0 360 arc
closepath
stroke
grestore
44 -55.8 M
(If the requested resource is not protected by Mutual Authentication, send a normal response. ) S
33 -66.4 M
gsave
0 setgray
newpath
33.0 -66.369873 2.75 0 360 arc
closepath
stroke
grestore
44 -70 M
2.40097284 0 32 0 0 (If the authentication realm specified in the req-A3 request is non-expected one, send a) A
44 -83.2 M
(401-B0 \(or 200-Optional-B0\) response. ) S
33 -93.8 M
gsave
0 setgray
newpath
33.0 -93.7697754 2.75 0 360 arc
closepath
stroke
grestore
44 -97.4 M
(If the received sid is invalid, inactive or unknown, send a 401-B0-stale response. ) S
33 -108 M
gsave
0 setgray
newpath
33.0 -107.969727 2.75 0 360 arc
closepath
stroke
grestore
44 -111.6 M
(If the receive oa is invalid, send a 401-B0 response. ) S
33 -122.2 M
gsave
0 setgray
newpath
33.0 -122.169678 2.75 0 360 arc
closepath
stroke
grestore
44 -125.8 M
(If the receive oa is correct, send a 200-B4 ) S
(response.) S
0 -136.8 M
[/View [/XYZ -4 620.200439 null] /Dest /36 /DEST pdfmark
0 -136.8 M
[/View [/XYZ -4 620.200439 null] /Dest /37 /DEST pdfmark
0 -155.8 M
%%IncludeResource: font Times-Bold
15 2 Nf
(7.\240) S
[/View [/XYZ -4 619.200439 null] /Dest /121 /DEST pdfmark
( Authentication ) S
(Algorithms) S
0 -180 M
11 0 Nf
0.807373047 0 32 0 0 (This document specifies only one family of the authentication algorithm. The family consists of four) A
0 -193.2 M
4.73603535 0 32 0 0 (authentication algorithms, which only differ in underlying mathematical groups and security) A
0 -206.4 M
(parameters. The algorithms do not add any additional fields. The tokens for algorithms ) S
(are) S
11 -227 M
gsave
0 setgray
newpath
11.0 -226.969482 2.75 0 360 arc
closepath
fill
grestore
22 -230.6 M
("iso11770-4-ec-p256" for the 256-bit prime-field elliptic-curve setting. ) S
11 -241.2 M
gsave
0 setgray
newpath
11.0 -241.169434 2.75 0 360 arc
closepath
fill
grestore
22 -244.8 M
("iso11770-4-ec-p521" for the 521-bit prime-field elliptic-curve setting. ) S
11 -255.4 M
gsave
0 setgray
newpath
11.0 -255.369385 2.75 0 360 arc
closepath
fill
grestore
22 -259 M
("iso11770-4-dl-2048" for the 2048-bit discrete-logarithm setting. ) S
11 -269.6 M
gsave
0 setgray
newpath
11.0 -269.569336 2.75 0 360 arc
closepath
fill
grestore
22 -273.2 M
("iso11770-4-dl-4096" for the 4096-bit discrete-logarithm ) S
(setting.) S
0 -297.4 M
0.0496168882 0 32 0 0 (For the elliptic-curve settings, the underlying fields and the curves used for elliptic-curve cryptography) A
0 -310.6 M
1.29969788 0 32 0 0 (are the prime field and the Curve P-256 and P-521, respectively, specified in the appendix of ) A
1.29969788 0 32 0 0 (FIPS) A
[/Rect [430.987061 -313.349121 454.997803 -301.249115] /Subtype /Link /Border [0 0 1] /Dest /70 /ANN pdfmark
0 -323.8 M
0.659442604 0 32 0 0 (PUB ) A
0.659442604 0 32 0 0 (186-2) A
[/Rect [-1.0 -326.549072 51.467041 -314.449066] /Subtype /Link /Border [0 0 1] /Dest /70 /ANN pdfmark
0.659442604 0 32 0 0 ( [FIPS.186-2.2000] specification. The hash functions H are SHA-256 for P-256 curve and) A
0 -337 M
4.22123575 0 32 0 0 (SHA-512 for P-521 curve, respectively, defined in ) A
4.22123575 0 32 0 0 (FIPS PUB ) A
4.22123575 0 32 0 0 (180-2) A
[/Rect [253.692383 -339.749023 338.703125 -327.649017] /Subtype /Link /Border [0 0 1] /Dest /69 /ANN pdfmark
4.22123575 0 32 0 0 ( [FIPS.180-2.2002]. The) A
0 -350.2 M
(representation of fields wa, wb, oa, and ob is hex-fixed-number. ) S
0 -374.4 M
3.16539407 0 32 0 0 (For discrete-logarithm settings, the underlying groups are 2048-bit and 4096-bit MODP groups) A
0 -387.6 M
2.37638974 0 32 0 0 (defined in ) A
2.37638974 0 32 0 0 ([RFC3526]) A
[/Rect [50.798584 -390.348877 102.914062 -378.248871] /Subtype /Link /Border [0 0 1] /Dest /74 /ANN pdfmark
2.37638974 0 32 0 0 ( respectively. See ) A
2.37638974 0 32 0 0 (Appendix\240A) A
[/Rect [188.07666 -390.348877 244.1521 -378.248871] /Subtype /Link /Border [0 0 1] /Dest /88 /ANN pdfmark
2.37638974 0 32 0 0 ( for the exact specification of the group and) A
0 -400.8 M
0.451383471 0 32 0 0 (associated parameters. The hash functions H are SHA-256 for the 2048-bit field and SHA-512 for the) A
0 -414 M
(4096-bit field, respectively. The representation of fields wa, wb, oa, and ob is base64-fixed-number. ) S
0 -438.2 M
0.719651461 0 32 0 0 (The clients SHOULD support at least "iso11770-4-dl-2048" algorithm, and are advised to support all) A
0 -451.4 M
2.55852723 0 32 0 0 (of the above four algorithms whenever possible. The server software implementations SHOULD) A
0 -464.6 M
(support at least "iso11770-4-dl-2048" algorithm, unless it is known that users will not use it. ) S
0 -488.8 M
6.6461792 0 32 0 0 (This algorithm uses Key Agreement Mechanism 3 \(KAM3\) defined in Section 6.3 of ) A
0 -502 M
(ISO/IEC-11770-4) S
[/Rect [-1.0 -504.748535 79.8249512 -492.648529] /Subtype /Link /Border [0 0 1] /Dest /82 /ANN pdfmark
( [ISO.11770-4.2006] as a basis. ) S
0 -513 M
[/View [/XYZ -4 244.001465 null] /Dest /38 /DEST pdfmark
0 -513 M
[/View [/XYZ -4 244.001465 null] /Dest /39 /DEST pdfmark
0 -532 M
15 2 Nf
(7.1.\240) S
[/View [/XYZ -4 243.001465 null] /Dest /122 /DEST pdfmark
( Common ) S
(functions) S
0 -556.2 M
11 0 Nf
(The password-based string pi used by this authentication is derived in the following manner: ) S
0 -580.4 M
(pi = H\(VS\(algorithm\) | VS\(auth-domain\) | VS\(realm\) | VS\(username\) | VS\(ph\(password\)\). ) S
0 -604.6 M
1.22430015 0 32 0 0 (The values of algorithm, realm and auth-domain are taken from the values contained in the 401-B0) A
0 -617.8 M
0.6798774 0 32 0 0 (message. When pi is used in the context of an octet string, it SHALL have the natural length derived) A
0 -631 M
0.61217618 0 32 0 0 (from the size of the output of function H \(e.g. 32 octets for SHA-256\). The function ph is defined by) A
0 -644.2 M
(the value of the pwd-hash field given in a 401-B0 message. ) S
0 -644.2 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 12 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 13 13
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
2.0967145 0 32 0 0 (The function VI encodes natural numbers into octet strings in the following manner: integers are) A
0 -26.4 M
0.113595143 0 32 0 0 (represented in big-endian radix-128 string, where each digit is represented by a octet 0x80\2350xff except) A
0 -39.6 M
1.31272888 0 32 0 0 (the last digit represented by 0x00\2350x7f. The first octet MUST NOT be 0x80. For example, VI\(i\) =) A
0 -52.8 M
1.4148798 0 32 0 0 (octet\(i\) for i < 128, and VI\(i\) = octet\(0x80 | \(i >> 7\)\) | octet\(i & 127\) for 128 <= i < 16384. This) A
0 -66 M
(encoding is the same as the one used in the length field in ) S
(the ASN.1 ) S
(encoding) S
[/Rect [255.327881 -68.7497559 346.844727 -56.6497574] /Subtype /Link /Border [0 0 1] /Dest /83 /ANN pdfmark
( [ITU.X690.1994]. ) S
0 -90.2 M
1.0265764 0 32 0 0 (The function VS encodes variable-length octet string into decodable octet string, as in the following) A
0 -103.4 M
(manner: ) S
0 -127.6 M
(VS\(s\) = VI\(length\(s\)\) | s ) S
0 -151.8 M
(where length\(s\) is a number of octets \(not characters\) in s. ) S
0 -176 M
0.816223145 0 32 0 0 (The function OCTETS converts an integer to corresponding radix-256 big-endian octet string having) A
0 -189.2 M
0.794494629 0 32 0 0 (its natural length: See ) A
0.794494629 0 32 0 0 (Section\2403.2) A
[/Rect [100.559326 -191.949463 152.058594 -179.849457] /Subtype /Link /Border [0 0 1] /Dest /13 /ANN pdfmark
0.794494629 0 32 0 0 ( for the definition of the "natural length". Note that this is different) A
0 -202.4 M
(from the function GE2OS_x in ) S
([ISO.11770-4.2006]) S
[/Rect [138.016113 -205.149414 229.225342 -193.049408] /Subtype /Link /Border [0 0 1] /Dest /82 /ANN pdfmark
(, which takes the shortest ) S
(representation.) S
0 -226.6 M
0.0794830322 0 32 0 0 (The equations for J, w_A, T, z, and w_B are specified differently for the discrete-logarithm setting and) A
0 -239.8 M
2.7266438 0 32 0 0 (the elliptic-curve setting based on ) A
2.7266438 0 32 0 0 ([ISO.11770-4.2006]) A
[/Rect [163.857178 -242.549316 255.066406 -230.44931] /Subtype /Link /Border [0 0 1] /Dest /82 /ANN pdfmark
2.7266438 0 32 0 0 (. These equations are defined later in this) A
0 -253 M
(section. ) S
0 -277.2 M
0.212799072 0 32 0 0 (The values o_A and o_B are derived by the following equation. Note that these equations are different) A
0 -290.4 M
(from ones specified in ) S
([ISO.11770-4.2006]) S
[/Rect [99.8127441 -293.14917 191.021973 -281.049164] /Subtype /Link /Border [0 0 1] /Dest /82 /ANN pdfmark
(. ) S
0 -314.6 M
(o_A = H\(octet\(04\) | OCTETS\(w_A\) | OCTETS\(w_B\) | OCTETS\(z\) | VI\(nc\) | VS\(v\)\) ) S
0 -327.8 M
(o_B = H\(octet\(03\) | OCTETS\(w_A\) | OCTETS\(w_B\) | OCTETS\(z\) | VI\(nc\) | VS\(v\)\) ) S
0 -338.8 M
[/View [/XYZ -4 418.200928 null] /Dest /40 /DEST pdfmark
0 -338.8 M
[/View [/XYZ -4 418.200928 null] /Dest /41 /DEST pdfmark
0 -357.8 M
%%IncludeResource: font Times-Bold
15 2 Nf
(7.2.\240) S
[/View [/XYZ -4 417.200928 null] /Dest /123 /DEST pdfmark
( Functions for discrete-logarithm ) S
(settings) S
0 -382 M
11 0 Nf
0.204589844 0 32 0 0 (In this section, the equation \(x / y mod z\) denotes an natural number w less than z which satisfies \(w *) A
0 -395.2 M
(y\) mod z = x mod z. ) S
0 -419.4 M
(For the discrete-logarithm, we refer some of the domain parameters by the following symbols: ) S
11 -440 M
gsave
0 setgray
newpath
11.0 -439.969 2.75 0 360 arc
closepath
fill
grestore
22 -443.6 M
(q: for "the prime" of the group. ) S
11 -454.2 M
gsave
0 setgray
newpath
11.0 -454.168945 2.75 0 360 arc
closepath
fill
grestore
22 -457.8 M
(g: for "the generator" associated with the group. ) S
11 -468.4 M
gsave
0 setgray
newpath
11.0 -468.368896 2.75 0 360 arc
closepath
fill
grestore
22 -472 M
(r: for the order of the subgroup generated by ) S
(g.) S
0 -496.2 M
(The function J is defined as ) S
0 -520.4 M
(J\(pi\) = g^\(pi\) mod q, ) S
0 -544.6 M
(where g and q are domain parameters of the underlying field. ) S
0 -568.8 M
(The value of w_A is derived as ) S
0 -593 M
(w_A = g^\(s_A\) mod q, ) S
0 -617.2 M
0.10450381 0 32 0 0 (where s_A is a random integer within range [1, r-1] and r is the size of the subgroup generated by g. In) A
0 -630.4 M
1.27694702 0 32 0 0 (addition, s_A MUST be larger than log\(q\)/log\(g\) \(so that g^\(s_A\) > q\). The value of w_A SHALL) A
0 -643.6 M
(satisfy 1 < w_A < q-1. The server MUST check this condition upon reception. ) S
0 -643.6 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 13 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 14 14
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
(The value of w_B is derived from J\(pi\) and w_A as: ) S
0 -37.4 M
(w_B = \(J\(pi\) * w_A^\(H\(octet\(1\) | OCTETS\(w_A\)\)\)\)^s_B mod q, ) S
0 -61.6 M
0.281823725 0 32 0 0 (where s_B is a random number within range [1, r-1]. The value of w_B MUST satisfy 1 < w_B < q-1.) A
0 -74.8 M
0.0681423619 0 32 0 0 (If this condition is not hold, the server MUST retry with another value of s_B. The client MUST check) A
0 -88 M
(this condition upon reception. ) S
0 -112.2 M
(The value z in the client side is derived by the following equation: ) S
0 -136.4 M
0.0306899119 0 32 0 0 (z = w_B^\(\(s_A + H\(octet\(2\) | OCTETS\(w_A\) | OCTETS\(w_B\)\)\) / \(s_A * H\(octet\(1\) | w_A\) + pi\) mod) A
0 -149.6 M
(r\) mod q. ) S
0 -173.8 M
(The value z in the server side is derived by the following equation: ) S
0 -198 M
(z = \(w_A * g^\(H\(octet\(2\) | OCTETS\(w_A\) | OCTETS\(w_B\)\)\)\)^s_B mod q. ) S
0 -209 M
[/View [/XYZ -4 548.000488 null] /Dest /42 /DEST pdfmark
0 -209 M
[/View [/XYZ -4 548.000488 null] /Dest /43 /DEST pdfmark
0 -228 M
%%IncludeResource: font Times-Bold
15 2 Nf
(7.3.\240) S
[/View [/XYZ -4 547.000488 null] /Dest /124 /DEST pdfmark
( Functions for elliptic-curve ) S
(settings) S
0 -252.2 M
11 0 Nf
(For the elliptic-curve setting, we refer some of the domain parameters by the following symbols: ) S
11 -272.8 M
gsave
0 setgray
newpath
11.0 -272.769531 2.75 0 360 arc
closepath
fill
grestore
22 -276.4 M
(q: for the prime used to define the field, ) S
11 -287 M
gsave
0 setgray
newpath
11.0 -286.969482 2.75 0 360 arc
closepath
fill
grestore
22 -290.6 M
(G: for the defined point called the generator, ) S
11 -301.2 M
gsave
0 setgray
newpath
11.0 -301.169434 2.75 0 360 arc
closepath
fill
grestore
22 -304.8 M
(r: for the order of the subfield generated by ) S
(G.) S
0 -329 M
0.133312985 0 32 0 0 (The function P\(p\) converts a curve point p to an integer representing the point p, by computing x * 2 +) A
0 -342.2 M
0.542757928 0 32 0 0 (\(y mod 2\), where \(x, y\) are the coordinates of the point p. P'\(z\) is the inverse of function P, that is, it) A
0 -355.4 M
1.18881369 0 32 0 0 (converts an integer z to a point p which satisfies P\(p\) = z. If such p is exist, it is uniquely defined.) A
0 -368.6 M
5.48195 0 32 0 0 (Otherwise, z does not represent a valid curve point. The operation [x] * p denotes an) A
0 -381.8 M
3.1579318 0 32 0 0 (integer-multiplication of point p: it calculates p + p + ... \(x times\) ... + p. See literatures on) A
0 -395 M
1.15378976 0 32 0 0 (elliptic-curve cryptography for the exact algorithms for those. 0_E represents the infinity point. The) A
0 -408.2 M
0.275709063 0 32 0 0 (equation \(x / y mod z\) denotes an natural number w less than z which satisfies \(w * y\) mod z = x mod) A
0 -421.4 M
(z. ) S
0 -445.6 M
(the function J is defined as ) S
0 -469.8 M
(J\(pi\) = [pi] * G. ) S
0 -494 M
(The value of w_A is derived as ) S
0 -518.2 M
(w_A = P\(W_A\), where W_A = [s_A] x G. ) S
0 -542.4 M
0.173244894 0 32 0 0 (where s_A is a random number within range [1, r-1]. The value of w_A MUST represent a valid curve) A
0 -555.6 M
(point, and W_A SHALL NOT be 0_E. The server MUST check this condition upon reception. ) S
0 -579.8 M
(The value of w_B is derived from J\(pi\) and W_A = P'\(w_A\) as: ) S
0 -604 M
(w_B = P\(W_B\), where W_B = [s_B] * \(J\(pi\) + [H\(octet\(1\) | OCTETS\(w_A\)\)] * W_A\). ) S
0 -628.2 M
0.240464956 0 32 0 0 (where s_B is a random number within range [1, r-1]. The value of w_B MUST represent a valid curve) A
0 -641.4 M
1.5842557 0 32 0 0 (point and satisfy [4] * P'\(w_B\) <> 0_E. If this condition is not hold, the server MUST retry with) A
0 -654.6 M
(another value of s_B. The client MUST check this condition upon reception. ) S
0 -654.6 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 14 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 15 15
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
(The value z in the client side is derived by the following equation: ) S
0 -37.4 M
0.338395178 0 32 0 0 (z = P\([\(s_A + H\(octet\(2\) | OCTETS\(w_A\) | OCTETS\(w_B\)\)\) / \(s_A * H\(octet\(1\) | OCTETS\(w_A\)\) +) A
0 -50.6 M
(pi\) mod r] * W_B\), where W_B = P'\(w_B\). ) S
0 -74.8 M
(The value z in the server side is derived by the following equation: ) S
0 -99 M
0.169418335 0 32 0 0 (z = P\([s_B] * \(W_A + [H\(octet\(2\) | OCTETS\(w_A\) | OCTETS\(w_B\)\)] * G\)\), where W_A = P'\(w_A\). ) A
0 -110 M
[/View [/XYZ -4 647.000244 null] /Dest /44 /DEST pdfmark
0 -110 M
[/View [/XYZ -4 647.000244 null] /Dest /45 /DEST pdfmark
0 -129 M
%%IncludeResource: font Times-Bold
15 2 Nf
(8.\240) S
[/View [/XYZ -4 646.000244 null] /Dest /125 /DEST pdfmark
( Validation ) S
(Methods) S
0 -153.2 M
11 0 Nf
1.55746698 0 32 0 0 (The "validation method" specifies a method to "relate" the mutual authentication processed by this) A
0 -166.4 M
3.66894531 0 32 0 0 (protocol with other authentications already performed in the underlying layers and to prevent) A
0 -179.6 M
(man-in-the-middle attacks. It decides the value of v which is an input to authentication protocols. ) S
0 -203.8 M
(The valid tokens for the validation field and corresponding values of v are as follows: ) S
11 -228 M
(host: ) S
33 -241.2 M
8.46830654 0 32 0 0 (hostname validation: v will be the ASCII string in the following format:) A
33 -254.4 M
2.61478686 0 32 0 0 ("scheme://host:port", where scheme, host and port are the URI parts correspond to the) A
33 -267.6 M
2.40550017 0 32 0 0 (currently accessing resource. The scheme and host are lower-case, and the port is in a) A
33 -280.8 M
1.442191 0 32 0 0 (shortest decimal representation. Even if the request-URI does not have a port part, v will) A
33 -294 M
(include the one. ) S
11 -307.2 M
(tls-cert: ) S
33 -320.4 M
1.8717041 0 32 0 0 (TLS certificate validation: v will be the octet string of the hash value of the public key) A
33 -333.6 M
2.67331958 0 32 0 0 (certificate used in underlying ) A
2.67331958 0 32 0 0 (TLS) A
[/Rect [174.05127 -336.349121 195.609131 -324.249115] /Subtype /Link /Border [0 0 1] /Dest /78 /ANN pdfmark
2.67331958 0 32 0 0 ( [RFC4346] \(or SSL\) connection. The hash value is) A
33 -346.8 M
4.95686865 0 32 0 0 (defined as the value of the "tbsCertificate" stream hashed by the hash algorithm) A
33 -360 M
1.82146657 0 32 0 0 (corresponding to the signing algorithm specified in the "signatureAlgorithm" field of the) A
33 -373.2 M
0.132411405 0 32 0 0 (X.509 certificate as defined in ) A
0.132411405 0 32 0 0 ([RFC3280]) A
[/Rect [168.28833 -375.948975 220.403809 -363.848969] /Subtype /Link /Border [0 0 1] /Dest /86 /ANN pdfmark
0.132411405 0 32 0 0 (. This value is equal to the verified signature value) A
33 -386.4 M
0.105712891 0 32 0 0 (stored in the "signatureValue" field, once certificate signature has been verified successfully. ) A
11 -399.6 M
(tls-key: ) S
33 -412.8 M
0.021695964 0 32 0 0 (TLS shared-key validation: v will be the octet string of the shared master secret negotiated in) A
33 -426 M
(underlying TLS \(or SSL\) ) S
(connection.) S
0 -450.2 M
2.88522124 0 32 0 0 (If the HTTP protocol is used on unencrypted channel, the validation type MUST be "host". If ) A
0 -463.4 M
0.798377395 0 32 0 0 (HTTP/TLS) A
[/Rect [-1.0 -466.148682 51.1154785 -454.048676] /Subtype /Link /Border [0 0 1] /Dest /73 /ANN pdfmark
0.798377395 0 32 0 0 ( [RFC2818] \(https\) protocol is used with server certificates, the validation type MUST be) A
0 -476.6 M
2.50211596 0 32 0 0 (either "tls-cert" or "tls-key". If HTTP/TLS protocol is used with anonymous Diffie-Hellman key) A
0 -489.8 M
(exchange, the validation type MUST be "tls-key" \(but see the note below\). ) S
0 -514 M
(The client MUST validate this field upon reception of 401-B0 messages. ) S
0 -538.2 M
0.786882699 0 32 0 0 (However, when the protocol is used on web browsers with any scripting capabilities, the anonymous) A
0 -551.4 M
0.888323128 0 32 0 0 (Diffie-Hellman family of TLS \(or SSL\) cipher-suite MUST NOT be used even if "tls-key" validated) A
0 -564.6 M
2.11579776 0 32 0 0 (Mutual authentication has been employed, and the certificate shown in TLS \(or SSL\) negotiation) A
0 -577.8 M
0.926255167 0 32 0 0 (MUST be verified using PKI. For other systems, if the "tls-key" validation is used on TLS \(or SSL\)) A
0 -591 M
1.19687903 0 32 0 0 (protocol without certificate verification using PKI, those systems MUST ensure that all transactions) A
0 -604.2 M
1.55316627 0 32 0 0 (with authenticated peer servers MUST use and be validated by the Mutual authentication protocol,) A
0 -617.4 M
(regardless of the existence of the 401-B0 responses. ) S
0 -628.4 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 15 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 16 16
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
0.471819192 0 32 0 0 (The protocol defines two variants for validation on TLS connections. The method "tls-key" method is) A
0 -26.4 M
2.24443364 0 32 0 0 (the more secure, so it is recommended to use tls-key when applicable. However, there are some) A
0 -39.6 M
(situations where tls-cert is more ) S
(preferable.) S
11 -60.2 M
gsave
0 setgray
newpath
11.0 -60.1699219 2.75 0 360 arc
closepath
fill
grestore
22 -63.8 M
0.0410308838 0 32 0 0 (When TLS accelerating proxies are used. In this case, it is difficult for the authenticating server to) A
22 -77 M
1.04400277 0 32 0 0 (acquire the TLS key information which are used between the client and the proxy. It is not the) A
22 -90.2 M
(case for client-side "tunneling" proxies using CONNECT method extension of HTTP. ) S
11 -100.8 M
gsave
0 setgray
newpath
11.0 -100.769775 2.75 0 360 arc
closepath
fill
grestore
22 -104.4 M
(When a black-box implementation of the TLS protocol is used on either peer. ) S
0 -115.4 M
[/View [/XYZ -4 641.600342 null] /Dest /46 /DEST pdfmark
0 -115.4 M
[/View [/XYZ -4 641.600342 null] /Dest /47 /DEST pdfmark
0 -134.4 M
%%IncludeResource: font Times-Bold
15 2 Nf
(9.\240) S
[/View [/XYZ -4 640.600342 null] /Dest /126 /DEST pdfmark
( Session ) S
(Management) S
0 -158.6 M
11 0 Nf
0.864200354 0 32 0 0 (By the first 4 messages \(first request, 401-B0, req-A1 and 401-B1\), a session represented by a sid is) A
0 -171.8 M
0.651367188 0 32 0 0 (generated. This session can be used for 1 or more requests for resources protected by the same realm) A
0 -185 M
1.7978946 0 32 0 0 (in the same server. Note that the session management is only an inside detail of the protocol and) A
0 -198.2 M
2.42413735 0 32 0 0 (usually not visible to normal users. If a session expires, the client and server will automatically) A
0 -211.4 M
(reestablish another session without telling it to the users. ) S
0 -235.6 M
2.36764312 0 32 0 0 (The server SHOULD accept at least one req-A3 request for each session, given that the request) A
0 -248.8 M
1.18772984 0 32 0 0 (reaches the server in a time window specified by the timeout field in the 401-B1 message, and that) A
0 -262 M
0.958862305 0 32 0 0 (there are no emergent reasons \(such as flooding attacks\) to forget the sessions. After that, the server) A
0 -275.2 M
(MAY discard any session at any time and MAY send 401-B0-stale messages for any req-A3 requests. ) S
0 -299.4 M
0.235251039 0 32 0 0 (The client MAY send more than one requests using a single session specified by the sid. However, for) A
0 -312.6 M
0.768356323 0 32 0 0 (all such requests, the values of the nonce-counter \(nc field\) MUST be different from each other. The) A
0 -325.8 M
1.7347331 0 32 0 0 (server MUST check for duplication of the received nonces, and if any duplication is detected, the) A
0 -339 M
(server MUST discard the session and respond by a 401-B0-stale message. ) S
0 -363.2 M
0.561971 0 32 0 0 (In addition, for each sessions, if the client has already sent a request with nonce value x, it SHOULD) A
0 -376.4 M
0.974810421 0 32 0 0 (NOT send requests with a nonce value not larger than \(x - nc-window\). The server MAY reject any) A
0 -389.6 M
0.0945199803 0 32 0 0 (requests with nonces violating this rule with 401-B0-stale responses. This restriction enables servers to) A
0 -402.8 M
(implement duplicated nonce detection in a constant memory. ) S
0 -427 M
0.178083152 0 32 0 0 (Values of nonces and nonce-related values MUST always be treated as natural numbers within infinite) A
0 -440.2 M
0.765112281 0 32 0 0 (range. Implementations using fixed-width integers or fixed-precision floating numbers MUST handle) A
0 -453.4 M
0.837579906 0 32 0 0 (integer overflow correctly and carefully. Such implementations are RECOMMENDED to accept any) A
0 -466.6 M
0.768153608 0 32 0 0 (larger values which cannot be represented in the fixed-width integer representations, as long as other) A
0 -479.8 M
0.0233154297 0 32 0 0 (limits such as internal header-length restrictions are not involved. The protocol is designed carefully so) A
0 -493 M
0.89453125 0 32 0 0 (that both clients and servers can implement the protocol only with fixed-width integers, by rounding) A
0 -506.2 M
(any overflowed values to the maximum possible value. ) S
0 -517.2 M
[/View [/XYZ -4 239.801514 null] /Dest /48 /DEST pdfmark
0 -517.2 M
[/View [/XYZ -4 239.801514 null] /Dest /49 /DEST pdfmark
0 -536.2 M
15 2 Nf
(10.\240) S
[/View [/XYZ -4 238.801514 null] /Dest /127 /DEST pdfmark
( Extension 1: Optional Mutual ) S
(Authentication) S
0 -560.4 M
11 0 Nf
2.73553824 0 32 0 0 (In several Web applications, users can access the same contents both as a guest user and as a) A
0 -573.6 M
4.12363672 0 32 0 0 (authenticated users. In usual Web applications, it is implemented using Cookies and custom) A
0 -586.8 M
0.99609375 0 32 0 0 (form-based authentications. The extension described in this section provides a replacement for those) A
0 -600 M
(authentication systems. The support for this extension is RECOMMENDED. ) S
0 -624.2 M
1.46003604 0 32 0 0 (Servers MAY send HTTP successful responses \(response code 200, 206 and others\) containing the) A
0 -637.4 M
0.00302358763 0 32 0 0 (Optional-WWW-Authenticate header, when it is allowed to send 401-B0 responses and the requests do) A
0 -650.6 M
4.14770508 0 32 0 0 (not contain Authentication-Info: headers. Such responses are hereafter called 200-Optional-B0) A
0 -663.8 M
(responses. ) S
0 -663.8 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 16 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 17 17
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
(HTTP/1.1 200 ) S
(OK) S
0 -26.4 M
(Optional-WWW-Authenticate: Mutual algorithm=xxxx, validation=xxxx, realm="xxxx", stale=0 ) S
0 -50.6 M
1.01423526 0 32 0 0 (The fields contained in the Optional-WWW-Authenticate header is the same as the 401-B0 message) A
0 -63.8 M
0.23061116 0 32 0 0 (described in ) A
0.23061116 0 32 0 0 (Section\2404.1) A
[/Rect [55.6696777 -66.5498047 107.168945 -54.4498062] /Subtype /Link /Border [0 0 1] /Dest /19 /ANN pdfmark
0.23061116 0 32 0 0 (. The client software supporting the mutual authentication protocol receiving a) A
0 -77 M
0.118990384 0 32 0 0 (200-Optional-B0 message will process the contents of the message and enables an authentication input) A
0 -90.2 M
(field. ) S
0 -114.4 M
1.16495764 0 32 0 0 (When the user input the username and password, the client resends the request with req-A1 header.) A
0 -127.6 M
1.38637698 0 32 0 0 (The server MUST respond with a 401-B1 message. In terms of the state management in ) A
1.38637698 0 32 0 0 (Section\2405) A
[/Rect [408.998535 -130.349609 452.247803 -118.249611] /Subtype /Link /Border [0 0 1] /Dest /31 /ANN pdfmark
1.38637698 0 32 0 0 (,) A
0 -140.8 M
0.613333583 0 32 0 0 (200-Optional-B0 responses are treated as if it is 401-B0 response: these messages SHOULD NOT be) A
0 -154 M
0.212921143 0 32 0 0 (sent as a response to req-A1 and req-A3 messages, unless the authentication realm sent from the client) A
0 -167.2 M
(or indicated by sid is different from the one which the server expects. ) S
0 -191.4 M
1.06931555 0 32 0 0 (Servers requesting optional mutual authentication SHOULD send the path field in 401-B1 messages) A
0 -204.6 M
0.278564453 0 32 0 0 (with an appropriate value. Client software supporting optional mutual authentication MUST recognize) A
0 -217.8 M
0.0573443249 0 32 0 0 (the field, and MUST send either req-A1 or req-A3 request for the URI space inside the specified paths,) A
0 -231 M
(instead of unauthenticated requests. ) S
0 -242 M
[/View [/XYZ -4 515.000732 null] /Dest /50 /DEST pdfmark
0 -242 M
[/View [/XYZ -4 515.000732 null] /Dest /51 /DEST pdfmark
0 -261 M
%%IncludeResource: font Times-Bold
15 2 Nf
(11.\240) S
[/View [/XYZ -4 514.000732 null] /Dest /128 /DEST pdfmark
( Methods to extend this ) S
(protocol) S
0 -285.2 M
11 0 Nf
1.59226775 0 32 0 0 (If a non-standard extension to the this protocol is implemented, it MUST use the extension-tokens) A
0 -298.4 M
(defined in ) S
(Section\2403) S
[/Rect [46.0461426 -301.14917 89.2954102 -289.049164] /Subtype /Link /Border [0 0 1] /Dest /8 /ANN pdfmark
( to avoid conflicts with this protocol and other extensions. ) S
0 -322.6 M
1.12068689 0 32 0 0 (Authentication algorithms other than those defined in this document MAY use other representations) A
0 -335.8 M
0.813720703 0 32 0 0 (for keys "wa", "wb", "oa" and "ob", replace those keys, and/or add fields to the messages containing) A
0 -349 M
0.262939453 0 32 0 0 (those fields by supplemental specifications. If those specifications use keys other than shown above, it) A
0 -362.2 M
3.71746826 0 32 0 0 (is RECOMMENDED to use extension-tokens to avoid any key-name conflict with the future) A
0 -375.4 M
(extension of this protocol. ) S
0 -386.4 M
[/View [/XYZ -4 370.601074 null] /Dest /52 /DEST pdfmark
0 -386.4 M
[/View [/XYZ -4 370.601074 null] /Dest /53 /DEST pdfmark
0 -405.4 M
15 2 Nf
(12.\240) S
[/View [/XYZ -4 369.601074 null] /Dest /129 /DEST pdfmark
( IANA ) S
(Considerations) S
0 -429.6 M
11 0 Nf
0.764973938 0 32 0 0 (The tokens used for authentication-algorithm, pwd-hash, and validation fields MUST be allocated by) A
0 -442.8 M
6.44533491 0 32 0 0 (IANA. To acquire registered token, IESG Approval outlined in ) A
6.44533491 0 32 0 0 ([RFC2434]) A
[/Rect [337.755859 -445.548828 389.871338 -433.448822] /Subtype /Link /Border [0 0 1] /Dest /72 /ANN pdfmark
6.44533491 0 32 0 0 ( is required.) A
0 -456 M
0.00386869 0 32 0 0 (Extension-tokens MAY be freely used for any non-standard, private and/or experimental uses for those) A
0 -469.2 M
(fields provided that the domain part in the token is appropriately used. ) S
0 -480.2 M
[/View [/XYZ -4 276.80127 null] /Dest /54 /DEST pdfmark
0 -480.2 M
[/View [/XYZ -4 276.80127 null] /Dest /55 /DEST pdfmark
0 -499.2 M
15 2 Nf
(13.\240) S
[/View [/XYZ -4 275.80127 null] /Dest /130 /DEST pdfmark
( Security ) S
(Considerations) S
0 -506.7 M
[/View [/XYZ -4 250.30127 null] /Dest /56 /DEST pdfmark
0 -506.7 M
[/View [/XYZ -4 250.30127 null] /Dest /57 /DEST pdfmark
0 -529.2 M
15 2 Nf
(13.1.\240) S
[/View [/XYZ -4 245.80127 null] /Dest /131 /DEST pdfmark
( General ) S
(Assumptions) S
11 -549.8 M
gsave
0 setgray
newpath
11.0 -549.768799 2.75 0 360 arc
closepath
fill
grestore
22 -553.4 M
11 0 Nf
1.02258301 0 32 0 0 (The protocol is secure against passive eavesdropping and replay attacks. However, the protocol) A
22 -566.6 M
1.19763184 0 32 0 0 (relies on transport security including DNS security for active attacks. HTTP/TLS SHOULD be) A
22 -579.8 M
(used where transport security is not assured and data secrecy is important. ) S
11 -590.4 M
gsave
0 setgray
newpath
11.0 -590.368652 2.75 0 360 arc
closepath
fill
grestore
22 -594 M
0.722500861 0 32 0 0 (When used with HTTP/TLS, the protocol gives true protection against active man-in-the-middle) A
22 -607.2 M
1.30800784 0 32 0 0 (attacks for each HTTP request/response pair, even when the server certificate is not used or is) A
22 -620.4 M
0.549002528 0 32 0 0 (unreliable. However, in such cases, JavaScript or similar scripting facilities can be used to affect) A
22 -633.6 M
0.396630853 0 32 0 0 (Mutually-authenticated contents from those not protected by this authentication mechanism. This) A
22 -646.8 M
(is why this memo requires that valid TLS server certificates MUST be presented ) S
(\() S
(Section\2408) S
[/Rect [381.791504 -649.54834 425.040771 -637.448364] /Subtype /Link /Border [0 0 1] /Dest /44 /ANN pdfmark
(\). ) S
0 -646.8 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 17 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 18 18
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 0 M
[/View [/XYZ -4 757.0 null] /Dest /58 /DEST pdfmark
0 0 M
[/View [/XYZ -4 757.0 null] /Dest /59 /DEST pdfmark
0 -18 M
%%IncludeResource: font Times-Bold
15 2 Nf
(13.2.\240) S
[/View [/XYZ -4 757.0 null] /Dest /132 /DEST pdfmark
( Implementation ) S
(Considerations) S
11 -38.6 M
gsave
0 setgray
newpath
11.0 -38.5700684 2.75 0 360 arc
closepath
fill
grestore
22 -42.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
2.00150919 0 32 0 0 (To securely implement the protocol, the Authentication-Info headers in the 200-B4 messages) A
22 -55.4 M
0.0388946533 0 32 0 0 (MUST always be validated by the client. If the validation is failed, the client MUST NOT process) A
22 -68.6 M
1.00373185 0 32 0 0 (any content sent with the message, including the body part. Non-compliance to this will enable) A
22 -81.8 M
(phishing attacks. ) S
11 -92.4 M
gsave
0 setgray
newpath
11.0 -92.369873 2.75 0 360 arc
closepath
fill
grestore
22 -96 M
1.87405598 0 32 0 0 (The authentication status on the client-side SHOULD be visible to the users of the client. In) A
22 -109.2 M
1.12999547 0 32 0 0 (addition, the method for asking user's name and passwords SHOULD be carefully designed so) A
22 -122.4 M
0.566964269 0 32 0 0 (that \(1\) the user can easily distinguish request of this authentication methods from other existing) A
22 -135.6 M
2.25709891 0 32 0 0 (authentication methods such as Basic and Digest methods, and \(2\) the Web contents cannot) A
22 -148.8 M
(imitate the user-interfaces of this protocol. ) S
22 -162 M
4.51211548 0 32 0 0 (An informational memo regarding user-interface considerations and recommendations for) A
22 -175.2 M
(implementing this protocol will be separately published. ) S
11 -185.8 M
gsave
0 setgray
newpath
11.0 -185.769531 2.75 0 360 arc
closepath
fill
grestore
22 -189.4 M
2.04538584 0 32 0 0 (For HTTP/TLS communications, when a web form is submitted from Mutually-authenticated) A
22 -202.6 M
0.245634198 0 32 0 0 (pages with the validation methods of "tls-cert" to a URI which is protected by the same realm \(so) A
22 -215.8 M
2.28624678 0 32 0 0 (indicated by the path field\), if server certificate has been changed since the pages has been) A
22 -229 M
2.72924805 0 32 0 0 (received, the peer is RECOMMENDED to be revalidated using a req-A1 message with an) A
22 -242.2 M
1.00484526 0 32 0 0 ("Expect: 100-continue" header. The same applies when the page is received with the validation) A
22 -255.4 M
(methods of "tls-key", and when the TLS session has been expired. ) S
11 -266 M
gsave
0 setgray
newpath
11.0 -265.969238 2.75 0 360 arc
closepath
fill
grestore
22 -269.6 M
2.04984236 0 32 0 0 (Server-side storages of user passwords are advised to have the values encrypted by one-way) A
22 -282.8 M
(function J\(pi\), instead of the real passwords, those hashed by ph, or pi. ) S
0 -293.8 M
[/View [/XYZ -4 463.200928 null] /Dest /60 /DEST pdfmark
0 -293.8 M
[/View [/XYZ -4 463.200928 null] /Dest /61 /DEST pdfmark
0 -312.8 M
15 2 Nf
(13.3.\240) S
[/View [/XYZ -4 462.200928 null] /Dest /133 /DEST pdfmark
( Usage ) S
(Considerations) S
11 -333.4 M
gsave
0 setgray
newpath
11.0 -333.369141 2.75 0 360 arc
closepath
fill
grestore
22 -337 M
11 0 Nf
2.14071226 0 32 0 0 (The user-names inputted by user may be sent automatically to any servers sharing the same) A
22 -350.2 M
0.940897644 0 32 0 0 (auth-domain. This means that when host-type auth-domain is used for authentication in HTTPS) A
22 -363.4 M
1.14145505 0 32 0 0 (site, and when an HTTP server on the same host requests Mutual authentication with the same) A
22 -376.6 M
0.380945534 0 32 0 0 (realm, the client will send the user-name in a clear text. If user-names have to kept secret against) A
22 -389.8 M
1.8079102 0 32 0 0 (eavesdropping, the server must use full-scheme-type auth-domain parameter. On the contrary,) A
22 -403 M
(passwords are not exposed to eavesdroppers even on HTTP requests. ) S
11 -413.6 M
gsave
0 setgray
newpath
11.0 -413.568848 2.75 0 360 arc
closepath
fill
grestore
22 -417.2 M
0.449605316 0 32 0 0 ("Pwd_hash" field is only provided for backward compatibility for password databases, and using) A
22 -430.4 M
0.988002241 0 32 0 0 ("none" function is the most secure and RECOMMENDED. If values other than "none" is used,) A
22 -443.6 M
0.611773312 0 32 0 0 (you must ensure that the hash values of the passwords were not exposed to the public. Note that) A
22 -456.8 M
(hashed password databases for plain-text authentications are usually not considered secret. ) S
11 -467.4 M
gsave
0 setgray
newpath
11.0 -467.368652 2.75 0 360 arc
closepath
fill
grestore
22 -471 M
0.288704425 0 32 0 0 (If the server provides several ways of storing server-side password database, it is advised to store) A
22 -484.2 M
0.00255533843 0 32 0 0 (the values encrypted by one-way function J\(pi\), instead of the real passwords, those hashed by ph,) A
22 -497.4 M
(or pi. ) S
0 -508.4 M
[/View [/XYZ -4 248.601562 null] /Dest /62 /DEST pdfmark
0 -508.4 M
[/View [/XYZ -4 248.601562 null] /Dest /63 /DEST pdfmark
0 -527.4 M
15 2 Nf
(14.\240) S
[/View [/XYZ -4 247.601562 null] /Dest /134 /DEST pdfmark
( Notice on intellectual ) S
(properties) S
0 -551.6 M
11 0 Nf
0.262732863 0 32 0 0 (The National Institute of Advanced Industrial Science and Technology \(AIST\) and Yahoo! Japan, Inc.) A
0 -564.8 M
1.52544296 0 32 0 0 (has jointly submitted a patent application about the protocol proposed in this documentation to the) A
0 -578 M
0.526489258 0 32 0 0 (Patent Office of Japan. The patent is intended to be open to any implementors of this protocol and its) A
0 -591.2 M
0.100416914 0 32 0 0 (variants under non-exclusive royalty-free manner once the protocol is accepted as an Internet standard.) A
0 -604.4 M
(For the detail of the patent application, contact the author of this document. ) S
0 -628.6 M
5.13322735 0 32 0 0 (The elliptic-curve based authentication algorithms might involve several existing patents of) A
0 -641.8 M
1.54915369 0 32 0 0 (third-parties. The authors of the document take no position regarding the validity or scope of such) A
0 -655 M
(patents, and other patents as well. ) S
0 -655 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 18 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 19 19
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 0 M
[/View [/XYZ -4 757.0 null] /Dest /64 /DEST pdfmark
0 0 M
[/View [/XYZ -4 757.0 null] /Dest /65 /DEST pdfmark
0 -18 M
%%IncludeResource: font Times-Bold
15 2 Nf
(15.\240) S
[/View [/XYZ -4 757.0 null] /Dest /135 /DEST pdfmark
( ) S
(Acknowledgement) S
0 -42.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
0.720075309 0 32 0 0 (We gratefully acknowledge Lepidum, Co. Ltd. for support on design and trial implementation of this) A
0 -55.4 M
(protocol. ) S
0 -66.4 M
[/View [/XYZ -4 690.600098 null] /Dest /66 /DEST pdfmark
0 -66.4 M
[/View [/XYZ -4 690.600098 null] /Dest /67 /DEST pdfmark
0 -85.4 M
15 2 Nf
(16.\240) S
[/View [/XYZ -4 689.600098 null] /Dest /136 /DEST pdfmark
( ) S
(References) S
0 -92.9 M
[/View [/XYZ -4 664.100098 null] /Dest /68 /DEST pdfmark
0 -115.4 M
15 2 Nf
(16.1.\240Normative) S
[/View [/XYZ -4 659.600098 null] /Dest /137 /DEST pdfmark
( ) S
(References) S
8 -131.7 M
0.989260435 0.989260435 scale
-0.0 -11.0 RM
11 0 Nf
([FIPS.180-2.2002]) S
[/View [/XYZ -4 842 null] /Dest /69 /DEST pdfmark
1.01085615 1.01085615 scale
105.6 -142.7 M
(National Institute of Standards and Technology, ) S
(\233) S
(Secure Hash ) S
(Standard) S
[/Rect [323.662842 -145.449707 422.801758 -133.349701] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://csrc.nist.gov/publications/fips/fips180-2/fips180-2.pdf)] Cd /ANN pdfmark
(,\234) S
105.6 -155.9 M
(FIPS\240PUB 180-2, ) S
(August\2402002.) S
8 -166.6 M
0.989260435 0.989260435 scale
-0.0 -11.0 RM
([FIPS.186-2.2000]) S
[/View [/XYZ -4 842 null] /Dest /70 /DEST pdfmark
1.01085615 1.01085615 scale
105.6 -177.6 M
(National Institute of Standards and Technology, ) S
(\233) S
(Digital Signature) S
[/Rect [323.662842 -180.399658 401.13208 -168.299652] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://csrc.nist.gov/publications/fips/fips186-2/fips186-2-change1.pdf)] Cd /ANN pdfmark
105.6 -190.8 M
(Standard ) S
(\(DSS\)) S
[/Rect [104.613037 -193.599609 175.966797 -181.499603] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://csrc.nist.gov/publications/fips/fips186-2/fips186-2-change1.pdf)] Cd /ANN pdfmark
(,\234 FIPS\240PUB 186-2, ) S
(January\2402000.) S
8 -212.6 M
([RFC2119]) S
[/View [/XYZ -4 842 null] /Dest /71 /DEST pdfmark
105.6 -212.6 M
(Bradner, ) S
(S.) S
(, ) S
(\233) S
(Key words for use in RFCs to Indicate Requirement ) S
(Levels) S
[/Rect [164.792969 -215.349609 428.004639 -203.249603] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc2119.txt)] Cd /ANN pdfmark
(,\234) S
105.6 -225.8 M
(BCP\24014, RFC\2402119, March\2401997 ) S
(\() S
(TXT) S
[/Rect [255.564697 -228.549561 278.948486 -216.449554] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc2119.txt)] Cd /ANN pdfmark
(, ) S
(HTML) S
[/Rect [282.448486 -228.549561 315.611084 -216.449554] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://xml.resource.org/public/rfc/html/rfc2119.html)] Cd /ANN pdfmark
(, ) S
(XML) S
[/Rect [319.111084 -228.549561 345.552734 -216.449554] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://xml.resource.org/public/rfc/xml/rfc2119.xml)] Cd /ANN pdfmark
(\).) S
8 -247.5 M
([RFC2434]) S
[/View [/XYZ -4 842 null] /Dest /72 /DEST pdfmark
105.6 -247.5 M
(Narten, ) S
(T.) S
( and ) S
(H. ) S
(Alvestrand) S
(, ) S
(\233) S
(Guidelines for Writing an IANA) S
[/Rect [242.990479 -250.299561 388.570557 -238.199554] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc2434.txt)] Cd /ANN pdfmark
105.6 -260.7 M
(Considerations Section in ) S
(RFCs) S
[/Rect [104.613037 -263.499512 247.487305 -251.399506] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc2434.txt)] Cd /ANN pdfmark
(,\234 BCP\24026, RFC\2402434, October\2401998 ) S
(\() S
(TXT) S
[/Rect [413.543701 -263.499512 436.92749 -251.399506] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc2434.txt)] Cd /ANN pdfmark
(, ) S
105.6 -273.9 M
(HTML) S
[/Rect [104.613037 -276.699463 137.775635 -264.599457] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://xml.resource.org/public/rfc/html/rfc2434.html)] Cd /ANN pdfmark
(, ) S
(XML) S
[/Rect [141.275635 -276.699463 167.717285 -264.599457] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://xml.resource.org/public/rfc/xml/rfc2434.xml)] Cd /ANN pdfmark
(\).) S
8 -295.7 M
([RFC2818]) S
[/View [/XYZ -4 842 null] /Dest /73 /DEST pdfmark
105.6 -295.7 M
(Rescorla, E., ) S
(\233) S
(HTTP Over ) S
(TLS) S
[/Rect [168.455566 -298.449463 245.001709 -286.349457] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc2818.txt)] Cd /ANN pdfmark
(,\234 RFC\2402818, ) S
(May\2402000.) S
8 -317.4 M
([RFC3526]) S
[/View [/XYZ -4 842 null] /Dest /74 /DEST pdfmark
105.6 -317.4 M
(Kivinen, T. and M. Kojo, ) S
(\233) S
(More Modular Exponential \(MODP\)) S
[/Rect [224.071533 -320.199463 388.296631 -308.099457] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc3526.txt)] Cd /ANN pdfmark
105.6 -330.6 M
(Diffie-Hellman groups for Internet Key Exchange ) S
(\(IKE\)) S
[/Rect [104.613037 -333.399414 355.251709 -321.299408] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc3526.txt)] Cd /ANN pdfmark
(,\234 RFC\2403526, ) S
105.6 -343.8 M
(May\2402003.) S
8 -365.6 M
([RFC3548]) S
[/View [/XYZ -4 842 null] /Dest /75 /DEST pdfmark
105.6 -365.6 M
(Josefsson, S., ) S
(\233) S
(The Base16, Base32, and Base64 Data ) S
(Encodings) S
[/Rect [171.524658 -368.349365 392.871826 -356.249359] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc3548.txt)] Cd /ANN pdfmark
(,\234) S
105.6 -378.8 M
(RFC\2403548, ) S
(July\2402003.) S
8 -400.5 M
([RFC3629]) S
[/View [/XYZ -4 842 null] /Dest /76 /DEST pdfmark
105.6 -400.5 M
(Yergeau, F., ) S
(\233) S
(UTF-8, a transformation format of ISO ) S
(10646) S
[/Rect [166.618896 -403.299316 371.169434 -391.19931] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc3629.txt)] Cd /ANN pdfmark
(,\234 STD\24063,) S
105.6 -413.7 M
(RFC\2403629, ) S
(November\2402003.) S
8 -435.5 M
([RFC4234]) S
[/View [/XYZ -4 842 null] /Dest /77 /DEST pdfmark
105.6 -435.5 M
(Crocker, D., ) S
(Ed.) S
( and ) S
(P. ) S
(Overell) S
(, ) S
(\233) S
(Augmented BNF for Syntax) S
[/Rect [253.077637 -438.249268 379.430908 -426.149261] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc4234.txt)] Cd /ANN pdfmark
105.6 -448.7 M
(Specifications: ) S
(ABNF) S
[/Rect [104.613037 -451.449219 204.081787 -439.349213] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc4234.txt)] Cd /ANN pdfmark
(,\234 RFC\2404234, October\2402005 ) S
(\() S
(TXT) S
[/Rect [330.098389 -451.449219 353.482178 -439.349213] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc4234.txt)] Cd /ANN pdfmark
(, ) S
(HTML) S
[/Rect [356.982178 -451.449219 390.144775 -439.349213] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://xml.resource.org/public/rfc/html/rfc4234.html)] Cd /ANN pdfmark
(, ) S
(XML) S
[/Rect [393.644775 -451.449219 420.086426 -439.349213] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://xml.resource.org/public/rfc/xml/rfc4234.xml)] Cd /ANN pdfmark
(\).) S
8 -470.4 M
([RFC4346]) S
[/View [/XYZ -4 842 null] /Dest /78 /DEST pdfmark
105.6 -470.4 M
(Dierks, T. and E. Rescorla, ) S
(\233) S
(The Transport Layer Security \(TLS\) Protocol) S
[/Rect [231.385498 -473.199219 433.482666 -461.099213] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc4346.txt)] Cd /ANN pdfmark
105.6 -483.6 M
(Version ) S
(1.1) S
[/Rect [104.613037 -486.39917 157.938232 -474.299164] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc4346.txt)] Cd /ANN pdfmark
(,\234 RFC\2404346, ) S
(April\2402006.) S
0 -503.4 M
[/View [/XYZ -4 253.60083 null] /Dest /79 /DEST pdfmark
0 -522.4 M
15 2 Nf
(16.2.\240Informative) S
[/View [/XYZ -4 252.60083 null] /Dest /138 /DEST pdfmark
( ) S
(References) S
8 -538.7 M
0.98959 0.98959 scale
-0.0 -11.0 RM
11 0 Nf
([I-D.altman-tls-channel-bindings]) S
[/View [/XYZ -4 842 null] /Dest /80 /DEST pdfmark
1.0105195 1.0105195 scale
171.2 -549.7 M
(Altman, J. and N. Williams, ) S
(\233) S
(Unique Channel Bindings for ) S
[/Rect [301.295654 -552.449 435.898682 -540.349] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://www.ietf.org/internet-drafts/draft-altman-tls-channel-bindings-03.txt)] Cd /ANN pdfmark
171.2 -562.9 M
(TLS) S
[/Rect [170.222412 -565.648926 191.780273 -553.54895] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://www.ietf.org/internet-drafts/draft-altman-tls-channel-bindings-03.txt)] Cd /ANN pdfmark
(,\234 draft-altman-tls-channel-bindings-03 \(work in) S
171.2 -576.1 M
(progress\), ) S
(November\2402007.) S
8 -597.8 M
([ISO.10646-1.1993]) S
[/View [/XYZ -4 842 null] /Dest /81 /DEST pdfmark
171.2 -597.8 M
(International Organization for Standardization, \233Information) S
171.2 -611 M
(Technology - Universal Multiple-octet coded Character Set) S
171.2 -624.2 M
(\(UCS\) - Part 1: Architecture and Basic Multilingual Plane,\234) S
171.2 -637.4 M
(ISO\240Standard 10646-1, ) S
(May\2401993.) S
171.2 -637.4 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 19 -) S
0 setgray
342.4 -8 M
grestore
pgsave restore N
%%Page: 20 20
%%PageResources: font Times-Roman Times-Bold Courier Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
8 -13 M
%%IncludeResource: font Times-Roman
11 0 Nf
([ISO.11770-4.2006]) S
[/View [/XYZ -4 842 null] /Dest /82 /DEST pdfmark
171.2 -13 M
(International Organization for Standardization, \233Information) S
171.2 -26.2 M
(technology \235 Security techniques \235 Key management \235 Part) S
171.2 -39.4 M
(4: Mechanisms based on weak secrets,\234 ISO\240Standard) S
171.2 -52.6 M
(11770-4, ) S
(May\2402006.) S
8 -74.3 M
([ITU.X690.1994]) S
[/View [/XYZ -4 842 null] /Dest /83 /DEST pdfmark
171.2 -74.3 M
(International Telecommunications Union, \233Information) S
171.2 -87.5 M
(Technology - ASN.1 encoding rules: Specification of Basic) S
171.2 -100.7 M
(Encoding Rules \(BER\), Canonical Encoding Rules \(CER\)) S
171.2 -113.9 M
(and Distinguished Encoding Rules \(DER\),\234) S
171.2 -127.1 M
(ITU-T\240Recommendation X.690, ) S
(1994.) S
8 -148.9 M
([RFC2616]) S
[/View [/XYZ -4 842 null] /Dest /84 /DEST pdfmark
171.2 -148.9 M
(Fielding, ) S
(R.) S
(, ) S
(Gettys, ) S
(J.) S
(, ) S
(Mogul, ) S
(J.) S
(, ) S
(Frystyk, ) S
(H.) S
(, ) S
(Masinter, ) S
(L.) S
(, ) S
171.2 -162.1 M
(Leach, ) S
(P.) S
(, and ) S
(T. ) S
(Berners-Lee) S
(, ) S
(\233) S
(Hypertext Transfer Protocol) S
[/Rect [312.55957 -164.849609 438.581787 -152.749603] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc2616.txt)] Cd /ANN pdfmark
171.2 -175.3 M
(-- ) S
(HTTP/1.1) S
[/Rect [170.222412 -178.049561 226.605713 -165.949554] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc2616.txt)] Cd /ANN pdfmark
(,\234 RFC\2402616, June\2401999 ) S
(\() S
(TXT) S
[/Rect [337.354736 -178.049561 360.738525 -165.949554] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc2616.txt)] Cd /ANN pdfmark
(, ) S
(PS) S
[/Rect [364.238525 -178.049561 378.470459 -165.949554] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc2616.ps)] Cd /ANN pdfmark
(, ) S
(PDF) S
[/Rect [381.970459 -178.049561 404.144287 -165.949554] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc2616.pdf)] Cd /ANN pdfmark
(, ) S
171.2 -188.5 M
(HTML) S
[/Rect [170.222412 -191.249512 203.38501 -179.149506] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://xml.resource.org/public/rfc/html/rfc2616.html)] Cd /ANN pdfmark
(, ) S
(XML) S
[/Rect [206.88501 -191.249512 233.32666 -179.149506] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://xml.resource.org/public/rfc/xml/rfc2616.xml)] Cd /ANN pdfmark
(\).) S
8 -210.2 M
([RFC2617]) S
[/View [/XYZ -4 842 null] /Dest /85 /DEST pdfmark
171.2 -210.2 M
(Franks, ) S
(J.) S
(, ) S
(Hallam-Baker, ) S
(P.) S
(, ) S
(Hostetler, ) S
(J.) S
(, ) S
(Lawrence, ) S
(S.) S
(, ) S
171.2 -223.4 M
(Leach, ) S
(P.) S
(, Luotonen, A., and ) S
(L. ) S
(Stewart) S
(, ) S
(\233) S
(HTTP) S
[/Rect [355.657715 -226.199463 385.157471 -214.099457] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc2617.txt)] Cd /ANN pdfmark
171.2 -236.6 M
(Authentication: Basic and Digest Access ) S
(Authentication) S
[/Rect [170.222412 -239.399414 419.991455 -227.299408] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc2617.txt)] Cd /ANN pdfmark
(,\234) S
171.2 -249.8 M
(RFC\2402617, June\2401999 ) S
(\() S
(TXT) S
[/Rect [272.587646 -252.599365 295.971436 -240.499359] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc2617.txt)] Cd /ANN pdfmark
(, ) S
(HTML) S
[/Rect [299.471436 -252.599365 332.634033 -240.499359] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://xml.resource.org/public/rfc/html/rfc2617.html)] Cd /ANN pdfmark
(, ) S
(XML) S
[/Rect [336.134033 -252.599365 362.575684 -240.499359] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://xml.resource.org/public/rfc/xml/rfc2617.xml)] Cd /ANN pdfmark
(\).) S
8 -271.6 M
([RFC3280]) S
[/View [/XYZ -4 842 null] /Dest /86 /DEST pdfmark
171.2 -271.6 M
(Housley, R., Polk, W., Ford, W., and D. Solo, ) S
(\233) S
(Internet) S
[/Rect [379.825195 -274.349365 416.03418 -262.249359] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc3280.txt)] Cd /ANN pdfmark
171.2 -284.8 M
(X.509 Public Key Infrastructure Certificate and Certificate) S
[/Rect [170.222412 -287.549316 430.957764 -275.44931] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc3280.txt)] Cd /ANN pdfmark
171.2 -298 M
(Revocation List \(CRL\) ) S
(Profile) S
[/Rect [170.222412 -300.749268 306.353516 -288.649261] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc3280.txt)] Cd /ANN pdfmark
(,\234 RFC\2403280, ) S
(April\2402002.) S
8 -319.7 M
([RFC3492]) S
[/View [/XYZ -4 842 null] /Dest /87 /DEST pdfmark
171.2 -319.7 M
(Costello, A., ) S
(\233) S
(Punycode: A Bootstring encoding of Unicode) S
[/Rect [233.471191 -322.499268 436.812256 -310.399261] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc3492.txt)] Cd /ANN pdfmark
171.2 -332.9 M
(for Internationalized Domain Names in Applications ) S
[/Rect [170.222412 -335.699219 406.847168 -323.599213] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc3492.txt)] Cd /ANN pdfmark
171.2 -346.1 M
(\(IDNA\)) S
[/Rect [170.222412 -348.89917 207.036621 -336.799164] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (ftp://ftp.isi.edu/in-notes/rfc3492.txt)] Cd /ANN pdfmark
(,\234 RFC\2403492, ) S
(March\2402003.) S
0 -365.9 M
[/View [/XYZ -4 391.10083 null] /Dest /88 /DEST pdfmark
0 -365.9 M
[/View [/XYZ -4 391.10083 null] /Dest /89 /DEST pdfmark
0 -384.9 M
%%IncludeResource: font Times-Bold
15 2 Nf
(Appendix) S
[/View [/XYZ -4 390.10083 null] /Dest /139 /DEST pdfmark
( A.\240 Group parameters for discrete-logarithm based ) S
0 -402.9 M
(algorithms) S
0 -427.1 M
11 0 Nf
(The MODP group used for the iso11770-4-dl-2048 algorithm is defined by the following ) S
(parameters.) S
0 -451.3 M
(The prime ) S
(is:) S
0 -473.1 M
%%IncludeResource: font Courier
9.0 4 Nf
( q = 0xFFFFFFFF FFFFFFFF C90FDAA2 2168C234 C4C6628B 80DC1CD1) S
0 -483.9 M
( 29024E08 8A67CC74 020BBEA6 3B139B22 514A0879 8E3404DD) S
0 -494.7 M
( EF9519B3 CD3A431B 302B0A6D F25F1437 4FE1356D 6D51C245) S
0 -505.5 M
( E485B576 625E7EC6 F44C42E9 A637ED6B 0BFF5CB6 F406B7ED) S
0 -516.3 M
( EE386BFB 5A899FA5 AE9F2411 7C4B1FE6 49286651 ECE45B3D) S
0 -527.1 M
( C2007CB8 A163BF05 98DA4836 1C55D39A 69163FA8 FD24CF5F) S
0 -537.9 M
( 83655D23 DCA3AD96 1C62F356 208552BB 9ED52907 7096966D) S
0 -548.7 M
( 670C354E 4ABC9804 F1746C08 CA18217C 32905E46 2E36CE3B) S
0 -559.5 M
( E39E772C 180E8603 9B2783A2 EC07A28F B5C55DF0 6F4C52C9) S
0 -570.3 M
( DE2BCBF6 95581718 3995497C EA956AE5 15D22618 98FA0510) S
0 -581.1 M
( 15728E5A 8AACAA68 FFFFFFFF FFFFFFFF.) S
0 -605.3 M
11 0 Nf
(The generator ) S
(is:) S
0 -627.1 M
9.0 4 Nf
( g = 2.) S
0 -636.1 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 20 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 21 21
%%PageResources: font Times-Roman Courier Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
(The size of the subgroup generated by g ) S
(is:) S
0 -35 M
%%IncludeResource: font Courier
9.0 4 Nf
( r = \(q - 1\) / 2 =) S
0 -45.8 M
( 0x7FFFFFFF FFFFFFFF E487ED51 10B4611A 62633145 C06E0E68) S
0 -56.6 M
( 94812704 4533E63A 0105DF53 1D89CD91 28A5043C C71A026E) S
0 -67.4 M
( F7CA8CD9 E69D218D 98158536 F92F8A1B A7F09AB6 B6A8E122) S
0 -78.2 M
( F242DABB 312F3F63 7A262174 D31BF6B5 85FFAE5B 7A035BF6) S
0 -89 M
( F71C35FD AD44CFD2 D74F9208 BE258FF3 24943328 F6722D9E) S
0 -99.8 M
( E1003E5C 50B1DF82 CC6D241B 0E2AE9CD 348B1FD4 7E9267AF) S
0 -110.6 M
( C1B2AE91 EE51D6CB 0E3179AB 1042A95D CF6A9483 B84B4B36) S
0 -121.4 M
( B3861AA7 255E4C02 78BA3604 650C10BE 19482F23 171B671D) S
0 -132.2 M
( F1CF3B96 0C074301 CD93C1D1 7603D147 DAE2AEF8 37A62964) S
0 -143 M
( EF15E5FB 4AAC0B8C 1CCAA4BE 754AB572 8AE9130C 4C7D0288) S
0 -153.8 M
( 0AB9472D 45565534 7FFFFFFF FFFFFFFF.) S
0 -178 M
11 0 Nf
(The MODP group used for the iso11770-4-dl-4096 algorithm is defined by the following ) S
(parameters.) S
0 -202.2 M
(The prime ) S
(is:) S
0 -224 M
9.0 4 Nf
( q = 0xFFFFFFFF FFFFFFFF C90FDAA2 2168C234 C4C6628B 80DC1CD1) S
0 -234.8 M
( 29024E08 8A67CC74 020BBEA6 3B139B22 514A0879 8E3404DD) S
0 -245.6 M
( EF9519B3 CD3A431B 302B0A6D F25F1437 4FE1356D 6D51C245) S
0 -256.4 M
( E485B576 625E7EC6 F44C42E9 A637ED6B 0BFF5CB6 F406B7ED) S
0 -267.2 M
( EE386BFB 5A899FA5 AE9F2411 7C4B1FE6 49286651 ECE45B3D) S
0 -278 M
( C2007CB8 A163BF05 98DA4836 1C55D39A 69163FA8 FD24CF5F) S
0 -288.8 M
( 83655D23 DCA3AD96 1C62F356 208552BB 9ED52907 7096966D) S
0 -299.6 M
( 670C354E 4ABC9804 F1746C08 CA18217C 32905E46 2E36CE3B) S
0 -310.4 M
( E39E772C 180E8603 9B2783A2 EC07A28F B5C55DF0 6F4C52C9) S
0 -321.2 M
( DE2BCBF6 95581718 3995497C EA956AE5 15D22618 98FA0510) S
0 -332 M
( 15728E5A 8AAAC42D AD33170D 04507A33 A85521AB DF1CBA64) S
0 -342.8 M
( ECFB8504 58DBEF0A 8AEA7157 5D060C7D B3970F85 A6E1E4C7) S
0 -353.6 M
( ABF5AE8C DB0933D7 1E8C94E0 4A25619D CEE3D226 1AD2EE6B) S
0 -364.4 M
( F12FFA06 D98A0864 D8760273 3EC86A64 521F2B18 177B200C) S
0 -375.2 M
( BBE11757 7A615D6C 770988C0 BAD946E2 08E24FA0 74E5AB31) S
0 -386 M
( 43DB5BFC E0FD108E 4B82D120 A9210801 1A723C12 A787E6D7) S
0 -396.8 M
( 88719A10 BDBA5B26 99C32718 6AF4E23C 1A946834 B6150BDA) S
0 -407.6 M
( 2583E9CA 2AD44CE8 DBBBC2DB 04DE8EF9 2E8EFC14 1FBECAA6) S
0 -418.4 M
( 287C5947 4E6BC05D 99B2964F A090C3A2 233BA186 515BE7ED) S
0 -429.2 M
( 1F612970 CEE2D7AF B81BDD76 2170481C D0069127 D5B05AA9) S
0 -440 M
( 93B4EA98 8D8FDDC1 86FFB7DC 90A6C08F 4DF435C9 34063199) S
0 -450.8 M
( FFFFFFFF FFFFFFFF.) S
0 -475 M
11 0 Nf
(The generator ) S
(is:) S
0 -496.8 M
9.0 4 Nf
( g = 2.) S
0 -521 M
11 0 Nf
(The size of the subgroup generated by g ) S
(is:) S
0 -542.8 M
9.0 4 Nf
( r = \(q - 1\) / 2 =) S
0 -553.6 M
( 0x7FFFFFFF FFFFFFFF E487ED51 10B4611A 62633145 C06E0E68) S
0 -564.4 M
( 94812704 4533E63A 0105DF53 1D89CD91 28A5043C C71A026E) S
0 -575.2 M
( F7CA8CD9 E69D218D 98158536 F92F8A1B A7F09AB6 B6A8E122) S
0 -586 M
( F242DABB 312F3F63 7A262174 D31BF6B5 85FFAE5B 7A035BF6) S
0 -596.8 M
( F71C35FD AD44CFD2 D74F9208 BE258FF3 24943328 F6722D9E) S
0 -607.6 M
( E1003E5C 50B1DF82 CC6D241B 0E2AE9CD 348B1FD4 7E9267AF) S
0 -618.4 M
( C1B2AE91 EE51D6CB 0E3179AB 1042A95D CF6A9483 B84B4B36) S
0 -629.2 M
( B3861AA7 255E4C02 78BA3604 650C10BE 19482F23 171B671D) S
0 -640 M
( F1CF3B96 0C074301 CD93C1D1 7603D147 DAE2AEF8 37A62964) S
0 -650.8 M
( EF15E5FB 4AAC0B8C 1CCAA4BE 754AB572 8AE9130C 4C7D0288) S
0 -661.6 M
( 0AB9472D 45556216 D6998B86 82283D19 D42A90D5 EF8E5D32) S
0 -661.6 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 21 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 22 22
%%PageResources: font Times-Roman Times-Bold Courier Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -10.8 M
%%IncludeResource: font Courier
9.0 4 Nf
( 767DC282 2C6DF785 457538AB AE83063E D9CB87C2 D370F263) S
0 -21.6 M
9.0 4 Nf
( D5FAD746 6D8499EB 8F464A70 2512B0CE E771E913 0D697735) S
0 -32.4 M
( F897FD03 6CC50432 6C3B0139 9F643532 290F958C 0BBD9006) S
0 -43.2 M
( 5DF08BAB BD30AEB6 3B84C460 5D6CA371 047127D0 3A72D598) S
0 -54 M
( A1EDADFE 707E8847 25C16890 54908400 8D391E09 53C3F36B) S
0 -64.8 M
( C438CD08 5EDD2D93 4CE1938C 357A711E 0D4A341A 5B0A85ED) S
0 -75.6 M
( 12C1F4E5 156A2674 6DDDE16D 826F477C 97477E0A 0FDF6553) S
0 -86.4 M
( 143E2CA3 A735E02E CCD94B27 D04861D1 119DD0C3 28ADF3F6) S
0 -97.2 M
( 8FB094B8 67716BD7 DC0DEEBB 10B8240E 68034893 EAD82D54) S
0 -108 M
( C9DA754C 46C7EEE0 C37FDBEE 48536047 A6FA1AE4 9A0318CC) S
0 -118.8 M
( FFFFFFFF FFFFFFFF.) S
0 -127.8 M
[/View [/XYZ -4 629.202148 null] /Dest /90 /DEST pdfmark
0 -127.8 M
[/View [/XYZ -4 629.202148 null] /Dest /91 /DEST pdfmark
0 -148.8 M
%%IncludeResource: font Times-Bold
15 2 Nf
(Appendix) S
[/View [/XYZ -4 626.202148 null] /Dest /140 /DEST pdfmark
( B.\240 Derived numerical ) S
(values) S
0 -173 M
%%IncludeResource: font Times-Roman
11 0 Nf
1.36450195 0 32 0 0 (This section gives several numerical values for implementing this protocol, derived from the above) A
0 -186.2 M
(specifications. The values shown in this section are for informative purpose only. ) S
195.8 -214.5 M
11 2 Nf
(dl-2048) S
236.7 -214.5 M
11 2 Nf
(dl-4096) S
277.7 -214.5 M
11 2 Nf
(ec-p256) S
319.8 -214.5 M
11 2 Nf
(ec-p521) S
58.9 -234.2 M
11 0 Nf
(Size of w_A ) S
(etc.) S
195.8 -234.2 M
(2048) S
236.7 -234.2 M
(4096) S
277.7 -234.2 M
(257) S
319.8 -234.2 M
(522) S
362 -234.2 M
(\(bits\)) S
58.9 -254 M
(Size of ) S
(H\(...\)) S
195.8 -254 M
(256) S
236.7 -254 M
(512) S
277.7 -254 M
(256) S
319.8 -254 M
(512) S
362 -254 M
(\(bits\)) S
58.9 -273.7 M
(length of OCTETS\(w_A\) ) S
(etc.) S
195.8 -273.7 M
(256) S
236.7 -273.7 M
(512) S
277.7 -273.7 M
(33) S
319.8 -273.7 M
(66) S
362 -273.7 M
(\(octets\)) S
58.9 -293.5 M
(length of wa, wb field ) S
(values.) S
195.8 -293.5 M
(346 ) S
(*) S
236.7 -293.5 M
(686 ) S
(*) S
277.7 -293.5 M
(66) S
319.8 -293.5 M
(132) S
362 -293.5 M
(\(octets\)) S
58.9 -313.2 M
(length of oa, ob field ) S
(values.) S
195.8 -313.2 M
(46 ) S
(*) S
236.7 -313.2 M
(90 ) S
(*) S
277.7 -313.2 M
(64) S
319.8 -313.2 M
(128) S
362 -313.2 M
(\(octets\)) S
58.9 -333 M
(minimum allowed ) S
(s_A) S
195.8 -333 M
(2048) S
236.7 -333 M
(4096) S
277.7 -333 M
(1) S
319.8 -333 M
(1) S
362 -333 M
(\240) S
0 -362.9 M
11 0 Nf
(\(The numbers marked with * include enclosing quotation ) S
(marks.\)) S
0 -373.9 M
[/View [/XYZ -4 383.05249 null] /Dest /92 /DEST pdfmark
0 -373.9 M
[/View [/XYZ -4 383.05249 null] /Dest /93 /DEST pdfmark
0 -392.9 M
15 2 Nf
(Appendix) S
[/View [/XYZ -4 382.05249 null] /Dest /141 /DEST pdfmark
( C.\240 Draft Remarks from the ) S
(Authors) S
0 -417.1 M
11 0 Nf
(The following items are currently under consideration for future revisions by the authors. ) S
11 -437.7 M
gsave
0 setgray
newpath
11.0 -437.717529 2.75 0 360 arc
closepath
fill
grestore
22 -441.3 M
4.30587769 0 32 0 0 (Allow wildcard domain specifications \(e.g. "*.example.com"\) for auth-domain parameters ) A
22 -454.5 M
(\() S
(Section\2404.1) S
[/Rect [24.6628418 -457.297363 76.1621094 -445.197357] /Subtype /Link /Border [0 0 1] /Dest /19 /ANN pdfmark
(\). ) S
11 -465.1 M
gsave
0 setgray
newpath
11.0 -465.117432 2.75 0 360 arc
closepath
fill
grestore
22 -468.7 M
(Whether to allow host validation for HTTP/TLS ) S
(\() S
(Section\2408) S
[/Rect [240.061035 -471.497314 283.310303 -459.397308] /Subtype /Link /Border [0 0 1] /Dest /44 /ANN pdfmark
(\). ) S
11 -479.3 M
gsave
0 setgray
newpath
11.0 -479.317383 2.75 0 360 arc
closepath
fill
grestore
22 -482.9 M
3.04969382 0 32 0 0 (Hashing functions for "tls-cert" verification: whether to use the certificate-specified one or) A
22 -496.1 M
3.66459966 0 32 0 0 (algorithm-specified one ) A
3.66459966 0 32 0 0 (\() A
3.66459966 0 32 0 0 (Section\2408) A
[/Rect [139.525391 -498.897217 182.774658 -486.797211] /Subtype /Link /Border [0 0 1] /Dest /44 /ANN pdfmark
3.66459966 0 32 0 0 (\). Note that existing implementations of TLS should be) A
22 -509.3 M
(considered to determine this. ) S
11 -519.9 M
gsave
0 setgray
newpath
11.0 -519.917236 2.75 0 360 arc
closepath
fill
grestore
22 -523.5 M
6.50442505 0 32 0 0 (Whether to use ) A
6.50442505 0 32 0 0 ("TLS channel ) A
6.50442505 0 32 0 0 (binding") A
[/Rect [109.855713 -526.297119 226.7229 -514.197144] /Subtype /Link /Border [0 0 1] /Dest /80 /ANN pdfmark
6.50442505 0 32 0 0 ( [I-D.altman-tls-channel-bindings] for "tls-key") A
22 -536.7 M
(verification ) S
(\() S
(Section\2408) S
[/Rect [78.1213379 -539.49707 121.370605 -527.397095] /Subtype /Link /Border [0 0 1] /Dest /44 /ANN pdfmark
(\). The same as ) S
(above.) S
0 -547.7 M
[/View [/XYZ -4 209.25293 null] /Dest /94 /DEST pdfmark
0 -547.7 M
[/View [/XYZ -4 209.25293 null] /Dest /95 /DEST pdfmark
0 -566.7 M
15 2 Nf
(Appendix) S
[/View [/XYZ -4 208.25293 null] /Dest /142 /DEST pdfmark
( D.\240 Draft Change ) S
(Log) S
0 -574.2 M
[/View [/XYZ -4 182.75293 null] /Dest /96 /DEST pdfmark
0 -574.2 M
[/View [/XYZ -4 182.75293 null] /Dest /97 /DEST pdfmark
0 -596.7 M
15 2 Nf
(D.1.\240) S
[/View [/XYZ -4 178.25293 null] /Dest /143 /DEST pdfmark
( Changes in revision ) S
(02) S
11 -617.3 M
gsave
0 setgray
newpath
11.0 -617.317139 2.75 0 360 arc
closepath
fill
grestore
22 -620.9 M
11 0 Nf
(Auth-realm is extended to allow full-scheme type. ) S
11 -631.5 M
gsave
0 setgray
newpath
11.0 -631.51709 2.75 0 360 arc
closepath
fill
grestore
22 -635.1 M
(A decision diagram for clients and decision procedures for servers are added. ) S
11 -645.7 M
gsave
0 setgray
newpath
11.0 -645.717041 2.75 0 360 arc
closepath
fill
grestore
22 -649.3 M
(401-B1 and req-A3 messages is changed to have authentication realm information. ) S
11 -659.9 M
gsave
0 setgray
newpath
11.0 -659.917 2.75 0 360 arc
closepath
fill
grestore
22 -663.5 M
(Bugs on equations for o_A and o_B is fixed. ) S
22 -664.5 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 22 -) S
0 setgray
44 -8 M
grestore
pgsave restore N
%%Page: 23 23
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
11 -9.6 M
gsave
0 setgray
newpath
11.0 -9.57006836 2.75 0 360 arc
closepath
fill
grestore
22 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
(Detailed equations for the whole algorithm is included. ) S
11 -23.8 M
gsave
0 setgray
newpath
11.0 -23.7700195 2.75 0 360 arc
closepath
fill
grestore
22 -27.4 M
11 0 Nf
(Elliptic-curve algorithms are updated. ) S
11 -38 M
gsave
0 setgray
newpath
11.0 -37.9699707 2.75 0 360 arc
closepath
fill
grestore
22 -41.6 M
(Several clarifications and other minor ) S
(updates.) S
0 -52.6 M
[/View [/XYZ -4 704.400146 null] /Dest /98 /DEST pdfmark
0 -71.6 M
%%IncludeResource: font Times-Bold
15 2 Nf
(Authors') S
[/View [/XYZ -4 703.400146 null] /Dest /144 /DEST pdfmark
( ) S
(Addresses) S
0 -96.9 M
11 0 Nf
(\240) S
46.2 -96.9 M
(Yutaka ) S
(Oiwa) S
0 -110.6 M
(\240) S
46.2 -110.6 M
(National Institute of Advanced Industrial Science and ) S
(Technology) S
0 -124.4 M
(\240) S
46.2 -124.4 M
(Research Center for Information ) S
(Security) S
0 -138.1 M
(\240) S
46.2 -138.1 M
(Akihabara Daibiru ) S
(#1102) S
0 -151.9 M
(\240) S
46.2 -151.9 M
(1-18-13 ) S
(Sotokanda) S
0 -165.6 M
(\240) S
46.2 -165.6 M
(Chiyoda-ku, ) S
(Tokyo) S
0 -179.4 M
(\240) S
46.2 -179.4 M
(JP) S
12.9 -193.1 M
(Phone:\240) S
46.2 -193.1 M
(+81 ) S
(3-5298-4722) S
14.1 -206.9 M
(Email:\240) S
46.2 -206.9 M
(mutual-auth-contact@m.aist.go.jp) S
0 -220.6 M
(\240) S
46.2 -220.6 M
(\240) S
0 -234.4 M
(\240) S
46.2 -234.4 M
(Hajime ) S
(Watanabe) S
0 -248.1 M
(\240) S
46.2 -248.1 M
(National Institute of Advanced Industrial Science and ) S
(Technology) S
0 -261.9 M
(\240) S
46.2 -261.9 M
(\240) S
0 -275.6 M
(\240) S
46.2 -275.6 M
(Hiromitsu ) S
(Takagi) S
0 -289.4 M
(\240) S
46.2 -289.4 M
(National Institute of Advanced Industrial Science and ) S
(Technology) S
0 -303.1 M
(\240) S
46.2 -303.1 M
(\240) S
0 -316.9 M
(\240) S
46.2 -316.9 M
(Hirofumi ) S
(Suzuki) S
0 -330.6 M
(\240) S
46.2 -330.6 M
(Yahoo! Japan, ) S
(Inc.) S
0 -344.4 M
(\240) S
46.2 -344.4 M
(Roppongi Hills Mori ) S
(Tower) S
0 -358.1 M
(\240) S
46.2 -358.1 M
(6-10-1 ) S
(Roppongi) S
0 -371.9 M
(\240) S
46.2 -371.9 M
(Minato-ku, ) S
(Tokyo) S
0 -385.6 M
(\240) S
46.2 -385.6 M
(JP) S
12.9 -399.4 M
(Phone:\240) S
46.2 -399.4 M
(+81 ) S
(3-6440-6290) S
0 -413.1 M
[/View [/XYZ -4 343.850342 null] /Dest /99 /DEST pdfmark
0 -432.1 M
15 2 Nf
(Full) S
[/View [/XYZ -4 342.850342 null] /Dest /145 /DEST pdfmark
( Copyright ) S
(Statement) S
0 -456.3 M
11 0 Nf
(Copyright \251 The IETF Trust ) S
(\(2008\).) S
0 -480.5 M
0.285736084 0 32 0 0 (This document is subject to the rights, licenses and restrictions contained in BCP\24078, and except as set) A
0 -493.7 M
(forth therein, the authors retain all their ) S
(rights.) S
0 -517.9 M
2.0998373 0 32 0 0 (This document and the information contained herein are provided on an \233AS IS\234 basis and THE) A
0 -531.1 M
2.10001636 0 32 0 0 (CONTRIBUTOR, THE ORGANIZATION HE/SHE REPRESENTS OR IS SPONSORED BY \(IF) A
0 -544.3 M
1.89660645 0 32 0 0 (ANY\), THE INTERNET SOCIETY, THE IETF TRUST AND THE INTERNET ENGINEERING) A
0 -557.5 M
2.54248047 0 32 0 0 (TASK FORCE DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT) A
0 -570.7 M
2.69620037 0 32 0 0 (NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE INFORMATION HEREIN) A
0 -583.9 M
10.4905329 0 32 0 0 (WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED WARRANTIES OF) A
0 -597.1 M
(MERCHANTABILITY OR FITNESS FOR A PARTICULAR ) S
(PURPOSE.) S
0 -609.1 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 23 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 24 24
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -18 M
%%IncludeResource: font Times-Bold
15 2 Nf
(Intellectual) S
[/View [/XYZ -4 757.0 null] /Dest /146 /DEST pdfmark
( ) S
(Property) S
0 -42.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
0.267791748 0 32 0 0 (The IETF takes no position regarding the validity or scope of any Intellectual Property Rights or other) A
0 -55.4 M
0.160845593 0 32 0 0 (rights that might be claimed to pertain to the implementation or use of the technology described in this) A
0 -68.6 M
1.16824162 0 32 0 0 (document or the extent to which any license under such rights might or might not be available; nor) A
0 -81.8 M
0.109073415 0 32 0 0 (does it represent that it has made any independent effort to identify any such rights. Information on the) A
0 -95 M
(procedures with respect to rights in RFC documents can be found in BCP\24078 and ) S
(BCP\24079.) S
0 -119.2 M
1.41531372 0 32 0 0 (Copies of IPR disclosures made to the IETF Secretariat and any assurances of licenses to be made) A
0 -132.4 M
0.227333471 0 32 0 0 (available, or the result of an attempt made to obtain a general license or permission for the use of such) A
0 -145.6 M
0.144189447 0 32 0 0 (proprietary rights by implementers or users of this specification can be obtained from the IETF on-line) A
0 -158.8 M
(IPR repository at ) S
(http://www.ietf.org/ipr) S
[/Rect [76.911377 -161.549561 179.130127 -149.449554] /Subtype /Link /Border [0 0 1] /Action [/Subtype /URI /URI (http://www.ietf.org/ipr)] Cd /ANN pdfmark
(.) S
0 -183 M
2.68802094 0 32 0 0 (The IETF invites any interested party to bring to its attention any copyrights, patents or patent) A
0 -196.2 M
0.503295898 0 32 0 0 (applications, or other proprietary rights that may cover technology that may be required to implement) A
0 -209.4 M
(this standard. Please address the information to the IETF at ) S
(ietf-ipr@ietf.org) S
(.) S
0 -239.4 M
15 2 Nf
(Acknowledgment) S
[/View [/XYZ -4 535.600586 null] /Dest /147 /DEST pdfmark
0 -263.6 M
11 0 Nf
(Funding for the RFC Editor function is provided by the IETF Administrative Support Activity ) S
(\(IASA\).) S
0 -274.6 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 24 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%EOF
| PAFTECH AB 2003-2026 | 2026-04-24 19:34:24 |