| CARVIEW |
Select Language
HTTP/2 200
date: Fri, 10 Oct 2025 07:03:16 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=U.Z_yBaknESk.W5IDcfRdEdRrAjo9f8JmSZ.gP6Y1JQ-1760079796-1.0.1.1-TwNiNlehZ6nJpfQ5MrB6IwRv_1snq3NxqTD8EU605a8PMIvoSqTD0pLAF0dOL6Q2A2T8BlRfUfCH4FOeS2qnybC__IWpsxJ0U52LmE0rtfk; path=/; expires=Fri, 10-Oct-25 07:33:16 GMT; domain=.rfc-editor.org; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 98c441c1da47c143-BLR
alt-svc: h3=":443"; ma=86400
Information on RFC 7677 » RFC Editor
Search RFCs
RFC 7677
SCRAM-SHA-256 and SCRAM-SHA-256-PLUS Simple Authentication and Security Layer (SASL) Mechanisms, November 2015
- File formats:
- Status:
- PROPOSED STANDARD
- Updates:
- RFC 5802
- Updated by:
- RFC 9266
- Author:
- T. Hansen
- Stream:
- IETF
- Source:
- NON WORKING GROUP
Cite this RFC: TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC7677
Discuss this RFC: Send questions or comments to the mailing list iesg@ietf.org
Other actions: Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 7677
Abstract
This document registers the Simple Authentication and Security Layer (SASL) mechanisms SCRAM-SHA-256 and SCRAM-SHA-256-PLUS, provides guidance for secure implementation of the original SCRAM-SHA-1-PLUS mechanism, and updates the SCRAM registration procedures of RFC 5802.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.
IAB • IANA • IETF • IRTF • ISE • ISOC • IETF Trust
Reports • Privacy Statement • Site Map • Contact Us