The Secure HyperText Transfer Protocol

This memo describes a syntax for securing messages sent using the Hypertext Transfer Protocol (HTTP), which forms the basis for the World Wide Web. Secure HTTP (S-HTTP) provides independently applicable security services for transaction confidentiality, authenticity/integrity and non-repudiability of origin.

[1]  John Linn,et al.  Privacy enhancement for Internet electronic mail: Part I: Message encipherment and authentication procedures , 1989, RFC.

[2]  Tim Berners-Lee,et al.  Uniform Resource Locators (URL) , 1994, RFC.

[3]  Stephen M. Matyas,et al.  Design of the commercial data masking facility data privacy algorithm , 1993, CCS '93.

[4]  Steve Kent,et al.  Privacy Enhancement for Internet Electronic Mail: Part II: Certificate-Based Key Management , 1989, RFC.

[5]  John Linn,et al.  Privacy Enhancement for Internet Electronic Mail: Part I: Message Encryption and Authentication Procedures , 1987, RFC.

[6]  Hugo Krawczyk,et al.  Keying Hash Functions for Message Authentication , 1996, CRYPTO.

[7]  Eric Rescorla,et al.  Security Extensions For HTML , 1999, RFC.

[8]  R. Housley Cryptographic Message Syntax , 1999, RFC.

[9]  Sandra L. Murphy,et al.  MIME Object Security Services , 1995, RFC.

[10]  Marshall T. Rose,et al.  The Content-MD5 Header Field , 1995, RFC.

[11]  Johan Håstad,et al.  On Using RSA with Low Exponent in a Public Key Network , 1985, CRYPTO.

[12]  Sandy Murphy,et al.  Security Multiparts for MIME: Multipart/Signed and Multipart/Encrypted , 1995, RFC.

[13]  Xuejia Lai,et al.  On the design and security of block ciphers , 1992 .

[14]  Nathaniel S. Borenstein,et al.  Multipurpose Internet Mail Extensions (MIME) Part One: Format of Internet Message Bodies , 1996, RFC.

[15]  Ronald L. Rivest,et al.  The MD5 Message-Digest Algorithm , 1992, RFC.

[16]  Burton S. Kaliski,et al.  The MD2 Message-Digest Algorithm , 1992, RFC.

[17]  Hugo Krawczyk,et al.  HMAC: Keyed-Hashing for Message Authentication , 1997, RFC.

[18]  Lawrence C. Stewart,et al.  HTTP Authentication: Basic and Digest Access Authentication , 1999 .

[19]  D. H. Crocker,et al.  Standard for the format of arpa intemet text messages , 1982 .

[20]  Steve Kille,et al.  A String Representation of Distinguished Names , 1995, RFC.

[21]  Bart Preneel,et al.  On the Security of Two MAC Algorithms , 1996, EUROCRYPT.

[22]  Roy T. Fielding,et al.  Hypertext Transfer Protocol - HTTP/1.1 , 1997, RFC.