Authors are Yutaka Oiwa, Hajime Watanabe, Hiromitsu Takagi, Kaoru Maeda,
Tatsuya Hayashi and Yuichi Ioku. Kathleen Moriarty is the responsible
Area Director. Yoav Nir is the document shepherd.
This document specifies cryptographic algorithms for use with the
Mutual user authentication method for the Hyper-text Transport
Review and Consensus
This document is one in a three-part set of documents describing the
Mutual-Auth authentication method for HTTP. This part describes the
cryptographic algorithms for use with MutualAuth. The algorithms are
based on Augmented Password-based Authenticated Key Exchange
(Augmented PAKE) techniques.
With version -05 it is the consensus of the HTTP-Auth working group
that this document is fit to be published as an experimental RFC.
The document received a moderate amount of review from the working
group. In addition we solicited and received a review from Melinda
There are implementations of this protocol written by the authors.
They take the form of a modified web server and a fork of the Firefox
browser that include this functionality.
All authors have confirmed that they are not aware of any undisclosed
IPR associated with this document. There have been no IPR disclosures.