| < draft-ietf-cat-ftpdsaauth-01.txt | draft-ietf-cat-ftpdsaauth-02.txt > | |||
|---|---|---|---|---|
| CAT Working Group Russell Housley (SPYRUS) | CAT Working Group Russell Housley (SPYRUS) | |||
| <draft-ietf-cat-ftpdsaauth-01.txt> William A. Nace (NSA) | <draft-ietf-cat-ftpdsaauth-02.txt> William A. Nace (NSA) | |||
| Updates: RFC 959 Peter Yee (SPYRUS) | Updates: RFC 959 Peter Yee (SPYRUS) | |||
| Internet-Draft Expire in six months | Internet-Draft Expire in six months | |||
| February 1998 | February 1998 | |||
| FTP Authentication Using DSA | FTP Authentication Using DSA | |||
| Status of this Memo | Status of this Memo | |||
| This document is an Internet-Draft. Internet-Drafts are working | This document is an Internet-Draft. Internet-Drafts are working | |||
| documents of the Internet Engineering Task Force (IETF), its areas, | documents of the Internet Engineering Task Force (IETF), its areas, | |||
| skipping to change at page 1, line 34 ¶ | skipping to change at page 1, line 34 ¶ | |||
| "1id-abstRacts.txt" listing contained in the Internet-Drafts Shadow | "1id-abstRacts.txt" listing contained in the Internet-Drafts Shadow | |||
| Directories on ds.internic.net (US East Coast), nic.nordu.net | Directories on ds.internic.net (US East Coast), nic.nordu.net | |||
| Europe), ftp.isi.edu (US West Coast), or munnari.oz.au (Pacific Rim). | Europe), ftp.isi.edu (US West Coast), or munnari.oz.au (Pacific Rim). | |||
| Distribution of this memo is unlimited. Please send comments to the | Distribution of this memo is unlimited. Please send comments to the | |||
| <cat-ietf@mit.edu> mailing list. | <cat-ietf@mit.edu> mailing list. | |||
| Abstract | Abstract | |||
| This document defines a method to secure file transfers using the FTP | This document defines a method to secure file transfers using the FTP | |||
| specification RFC 959, ''FILE TRANSFER PROTOCOL (FTP)'' (October 1985) | specification RFC 959, "FILE TRANSFER PROTOCOL (FTP)" (October 1985) | |||
| and the work in progress document ''FTP Security Extensions'' <Draft- | and RFC 2228 "FTP Security Extensions" (October 1997) [1]. This | |||
| ietf-cat-ftpsec-09.txt>[1]. This method will use the extensions | method will use the extensions proposed in the "FTP Security | |||
| proposed in the ''FTP Security Extensions'' Draft document along with a | Extensions" along with a public/private digital signature. | |||
| public/private digital signature. | ||||
| 1 Introduction | 1 Introduction | |||
| The File Transfer Protocol (FTP) provides no protocol security except | The File Transfer Protocol (FTP) provides no protocol security except | |||
| for a user authentication password which is transmitted in the clear. | for a user authentication password which is transmitted in the clear. | |||
| In addition, the protocol does not protect the file transfer session | In addition, the protocol does not protect the file transfer session | |||
| beyond the original authentication phase. | beyond the original authentication phase. | |||
| The Internet Engineering Task Force (IETF) Common Authentication | The Internet Engineering Task Force (IETF) Common Authentication | |||
| Technology (CAT) Working Group has specified security extensions to | Technology (CAT) Working Group has specified security extensions to | |||
| skipping to change at page 7, line 24 ¶ | skipping to change at page 7, line 24 ¶ | |||
| private key from disclosure. | private key from disclosure. | |||
| 5.0 Acknowledgements | 5.0 Acknowledgements | |||
| I would like to thank Todd Horting for insights gained during | I would like to thank Todd Horting for insights gained during | |||
| implementation of this specification. | implementation of this specification. | |||
| 6.0 References | 6.0 References | |||
| [1] - M. Horowitz and S. J. Lunt. FTP Security Extensions. | [1] - M. Horowitz and S. J. Lunt. FTP Security Extensions. | |||
| Internet-Draft <draft-ietf-cat-ftpsec-09.txt>, | RFC 2228, October, 1997 | |||
| November, 1996. | ||||
| [2] - Digital Signature Standard (DSS). FIPS Pub 186. | [2] - Digital Signature Standard (DSS). FIPS Pub 186. | |||
| May 19, 1994. | May 19, 1994. | |||
| [3] - Secure Hash Standard. FIPS Pub 180-1. April 17, 1995. | [3] - Secure Hash Standard. FIPS Pub 180-1. April 17, 1995. | |||
| [4] - Standard for Entity Authentication Using Public Key | [4] - Standard for Entity Authentication Using Public Key | |||
| Cryptography. FIPS Pub 196. February 18, 1997. | Cryptography. FIPS Pub 196. February 18, 1997. | |||
| 7.0 Author's Address | 7.0 Author's Address | |||
| End of changes. 3 change blocks. | ||||
| 8 lines changed or deleted | 6 lines changed or added | |||
This html diff was produced by rfcdiff 1.48. The latest version is available from http://tools.ietf.org/tools/rfcdiff/ | ||||