Ç¥ÁØÈ­ Âü¿©¾È³»

TTAÀÇ Ç¥ÁØÇöȲ

Ȩ > Ç¥ÁØÈ­ °³¿ä > TTAÀÇ Ç¥ÁØÇöȲ

Ç¥ÁعøÈ£ [ÆóÁö] TTAS.IF-RFC2069 ±¸Ç¥ÁعøÈ£
Á¦°³Á¤ÀÏ 1998-10-27 ÃÑÆäÀÌÁö 13
ÇѱÛÇ¥ÁØ¸í ¿ä¾àÁ¢±Ù ÀÎÁõÀ» À§ÇÑ HTTPÀÇ È®Àå Ç¥ÁØ
¿µ¹®Ç¥Áظí AN EXTENSION TO HTTP - DIGEST ACCESS AUTHENTICATION
Çѱ۳»¿ë¿ä¾à HTTP/1.0 ÇÁ·ÎÅäÄÝ¿¡¼­´Â Á¢±Ù ÀÎÁõ ¹æ½ÄÀ¸·Î ±âº» Á¢±Ù ÀÎÁõ ¹æ½Ä(BASIC ACCESS AUTHENTICATION)À» Àû¿ëÇÏ°í ÀÖ´Ù. ÀÌ ¹æ½ÄÀº »ç¿ëÀÚ À̸§°ú Æнº¿öµå°ú ³×Æ®¿÷ »ó¿¡¼­ Æò¹®ÀÇ ÇüÅ·ΠÀü¼ÛµÇ±â ¶§¹®¿¡ »ç¿ëÀÚ ÀÎÁõ¿¡ ÀÖ¾î ¾ÈÀüÇÏÁö ¸øÇÑ ¹æ¹ýÀ¸·Î ¿©°ÜÁö°í ÀÖ´Ù. µû¶ó¼­ ¾Õ·ÎÀÇ HTTP ÇÁ·ÎÅäÄÝ¿¡ Àû¿ëÇϱâ À§ÇÑ »õ·Î¿î ÀÎÁõ ±â¹ý¿¡ ´ëÇÑ ±Ô°Ý(SPECIFICATION)ÀÌ ÇÊ¿äÇÏ°Ô µÇ¾ú´Ù. º» Ç¥ÁØÀº ¿ä¾àÁ¢±Ù ÀÎÁõ(DIGEST ACCESS AUTHENTIFICATION)À̶ó°í ÇÏ´Â »õ·Î¿î ÀÎÁõ ±â¹ý¿¡ ´ëÇÑ ±Ô °Ý(SPECIFICATION)À» Á¦°øÇÏ¿© ±âº» Á¢±Ù ÀÎÁõÀÌ °¡Áö°í ÀÖ´Â ¸¹Àº ´ÜÁ¡µéÀ» ÇؼÒÇÏ°íÀÚ Çϸç HTTP/1.1 ¿¡¼­ÀÇ »ç¿ëÀÚ ÀÎÁõ ¹æ½ÄÀ¸·Î ?¬¿ëµÇµµ·? ÇÑ´Ù.
¿µ¹®³»¿ë¿ä¾à THE PROTOCOL REFERRED TO AS "HTTP/1.0" INCLUDES SPECIFICATION FOR A BASIC ACCESS AUTHENTIFICATION SCHEME[1]. THIS SCHEME IS NOT CONSIDERED TO BE A SECURE METHOD OF USER AUTHENTICATION, AS THE USER NAME AND PASSWORD ARE PASSED OVER THE NETWORK IN AN UNENCRYPTED FORM. A SPECIFICATION FOR A NEW AUTHENTIFICATION SCHEME IS NEEDED FOR FUTURE VERSIONS OF THE HTTP PROTOCOL. THIS STANDARD PROVIDES SPECIFICATION FOR SUCH A SCHEME, REFERRED TO AS "DIGEST ACCESS AUTHENTICATION". THE INTENT IS SIMPLY TO CREATE A WEAK ACCESS AUTHENTICATION METHOD WHICH AVOIDS THE MOST SERIOUS FLAWS OF BASIC AUTHENTICATION. IT IS PROPOSED THAT THIS ACCESS AUTHENTICATION SCHEME BE INCLUDED IN THE PROPOSED HTTP/1.1 SPECIFICATION.
±¹Á¦Ç¥ÁØ IETF RFC2069
°ü·ÃÆÄÀÏ 98-096.zip
Ç¥ÁØÀÌ·Â
±¸ºÐ ÀÏÀÚ Ç¥ÁعøÈ£ º¯°æ³»¿ª
Á¦Á¤ 1998-10-27 TTAS.IF-RFC2069
°³Á¤ 2006-12-27 TTAE.IF-RFC2617 º» Ç¥ÁØÀ¸·Î °³Á¤. ±âÁ¸ Ç¥ÁØ ´ëü

ÀÌÀü
À̼¼´ë ÄÚµå¾ø´Â ÀüÈ­±â Ç¥ÁØ
´ÙÀ½