Ȩ > Ç¥ÁØÈ °³¿ä > TTAÀÇ Ç¥ÁØÇöȲ
| Ç¥ÁعøÈ£ | [ÆóÁö] TTAS.IF-RFC2069 | ±¸Ç¥ÁعøÈ£ | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Á¦°³Á¤ÀÏ | 1998-10-27 | ÃÑÆäÀÌÁö | 13 | ||||||||||||
| ÇѱÛÇ¥Áظí | ¿ä¾àÁ¢±Ù ÀÎÁõÀ» À§ÇÑ HTTPÀÇ È®Àå Ç¥ÁØ | ||||||||||||||
| ¿µ¹®Ç¥Áظí | AN EXTENSION TO HTTP - DIGEST ACCESS AUTHENTICATION | ||||||||||||||
| Çѱ۳»¿ë¿ä¾à | HTTP/1.0 ÇÁ·ÎÅäÄÝ¿¡¼´Â Á¢±Ù ÀÎÁõ ¹æ½ÄÀ¸·Î ±âº» Á¢±Ù ÀÎÁõ ¹æ½Ä(BASIC ACCESS AUTHENTICATION)À» Àû¿ëÇÏ°í ÀÖ´Ù. ÀÌ ¹æ½ÄÀº »ç¿ëÀÚ À̸§°ú Æнº¿öµå°ú ³×Æ®¿÷ »ó¿¡¼ Æò¹®ÀÇ ÇüÅ·ΠÀü¼ÛµÇ±â ¶§¹®¿¡ »ç¿ëÀÚ ÀÎÁõ¿¡ ÀÖ¾î ¾ÈÀüÇÏÁö ¸øÇÑ ¹æ¹ýÀ¸·Î ¿©°ÜÁö°í ÀÖ´Ù. µû¶ó¼ ¾Õ·ÎÀÇ HTTP ÇÁ·ÎÅäÄÝ¿¡ Àû¿ëÇϱâ À§ÇÑ »õ·Î¿î ÀÎÁõ ±â¹ý¿¡ ´ëÇÑ ±Ô°Ý(SPECIFICATION)ÀÌ ÇÊ¿äÇÏ°Ô µÇ¾ú´Ù. º» Ç¥ÁØÀº ¿ä¾àÁ¢±Ù ÀÎÁõ(DIGEST ACCESS AUTHENTIFICATION)À̶ó°í ÇÏ´Â »õ·Î¿î ÀÎÁõ ±â¹ý¿¡ ´ëÇÑ ±Ô °Ý(SPECIFICATION)À» Á¦°øÇÏ¿© ±âº» Á¢±Ù ÀÎÁõÀÌ °¡Áö°í ÀÖ´Â ¸¹Àº ´ÜÁ¡µéÀ» ÇؼÒÇÏ°íÀÚ Çϸç HTTP/1.1 ¿¡¼ÀÇ »ç¿ëÀÚ ÀÎÁõ ¹æ½ÄÀ¸·Î ?¬¿ëµÇµµ·? ÇÑ´Ù. | ||||||||||||||
| ¿µ¹®³»¿ë¿ä¾à | THE PROTOCOL REFERRED TO AS "HTTP/1.0" INCLUDES SPECIFICATION FOR A BASIC ACCESS AUTHENTIFICATION SCHEME[1]. THIS SCHEME IS NOT CONSIDERED TO BE A SECURE METHOD OF USER AUTHENTICATION, AS THE USER NAME AND PASSWORD ARE PASSED OVER THE NETWORK IN AN UNENCRYPTED FORM. A SPECIFICATION FOR A NEW AUTHENTIFICATION SCHEME IS NEEDED FOR FUTURE VERSIONS OF THE HTTP PROTOCOL. THIS STANDARD PROVIDES SPECIFICATION FOR SUCH A SCHEME, REFERRED TO AS "DIGEST ACCESS AUTHENTICATION". THE INTENT IS SIMPLY TO CREATE A WEAK ACCESS AUTHENTICATION METHOD WHICH AVOIDS THE MOST SERIOUS FLAWS OF BASIC AUTHENTICATION. IT IS PROPOSED THAT THIS ACCESS AUTHENTICATION SCHEME BE INCLUDED IN THE PROPOSED HTTP/1.1 SPECIFICATION. | ||||||||||||||
| ±¹Á¦Ç¥ÁØ | IETF RFC2069 | ||||||||||||||
| °ü·ÃÆÄÀÏ | 98-096.zip | ||||||||||||||
| Ç¥ÁØÀÌ·Â |
|
||||||||||||||
