← Cybersecurity Alphabet Soup

SASL

Simple Authentication and Security Layer

identityhard

SASL is a framework that lets protocols like LDAP, SMTP, and IMAP plug in different authentication mechanisms without changing the protocol itself. A client and server negotiate a mechanism, such as SCRAM or GSSAPI for Kerberos, and then exchange the mechanism's messages. It decouples how you authenticate from what protocol you are speaking.

Sources

More in identity