Pompano Beach FL USA anthonybryan@gmail.com http://www.metalinker.org

The IANA registry named "Hypertext Transfer Protocol (HTTP) Digest Algorithm Values" defines values for digest algorithms used by Instance Digests in HTTP. Instance Digests in HTTP provide a digest, also known as a checksum or hash, of an entire representation of the current state of a resource. This draft adds new values to the registry and updates previous values.

The IANA registry named "Hypertext Transfer Protocol (HTTP) Digest Algorithm Values" defines values for digest algorithms used by Instance Digests in HTTP. Note: This is unrelated to HTTP Digest Authentication. Instance Digests in HTTP provide a digest, also known as a checksum or hash, of an entire representation of the current state of a resource. The registry was created by in 2002. This draft adds new values to the registry and updates previous values which had redundant or outdated references. [[ Discussion of this draft should take place on IETF HTTP WG mailing list at ietf-http-wg@w3.org or directly to the author. ]]

Examples of Instance Digest for SHA-256: Digest: SHA-256=MWVkMWQxYTRiMzk5MDQ0MzI3NGU5NDEyZTk5OWY1ZGFmNzgyZTJlO DYzYjRjYzFhOTlmNTQwYzI2M2QwM2U2MQ==

This document makes use of the IANA registry named "Hypertext Transfer Protocol (HTTP) Digest Algorithm Values" specified in .

Accordingly, IANA has updated the following registrations: Digest Algorithm: MD5 Description: The MD5 algorithm, as specified in . The output of this algorithm is encoded using the base64 encoding . Reference: Digest Algorithm: SHA Description: The SHA-1 algorithm . The output of this algorithm is encoded using the base64 encoding . Reference:

Accordingly, IANA has made the following registrations: Digest Algorithm: SHA-256 Description: The SHA-256 algorithm . The output of this algorithm is encoded using the base64 encoding . Reference: Digest Algorithm: SHA-512 Description: The SHA-512 algorithm . The output of this algorithm is encoded using the base64 encoding . Reference:

Same as .

All previous values to the registry are still valid. The reference for base64 encoding has been updated for both MD5 and SHA. The reference for SHA has been updated. The SHA-256 and SHA-512 algorithms have been added to the registry.

National Institute of Standards and Technology (NIST)

Thanks to Mark Nottingham, Eran Hammer-Lahav, Nils Maier, Lisa Dusseault, Alfred Hoenes, Pasi Eronen, Gonzalo Camarillo, and Radia Perlman.

[[ to be removed by the RFC editor before publication as an RFC. ]] Known issues concerning this draft: None known. -04 : December 10, 2009. General Area Review Team (Gen-ART) review nits. -03 : October 21, 2009. Make things look a bit nicer. -02 : October 15, 2009. New title. "Note: This is unrelated to HTTP Digest Authentication." Remove SHA-224 and SHA-384. "Changes compared to RFC 3230" section added. -01 : October 07, 2009. Update previous values that are outdated. RFC 4648 for Base64 encoding. -00 : September 08, 2009. Initial draft.