Simple Authentication and Security Layer

Framework for authentication and data security in Internet protocols.

- Simple Authentication and Security Layer

30 related topics


Post Office Protocol

Application-layer Internet standard protocol used by e-mail clients to retrieve e-mail from a mail server.

Figure 2. The TCP/IP model or Internet layering scheme and its relation to some common protocols.

POP3 clients support SASL authentication methods via the AUTH extension.

Lightweight Directory Access Protocol

Open, vendor-neutral, industry standard application protocol for accessing and maintaining distributed directory information services over an Internet Protocol (IP) network.

Encapsulation of application data carried by UDP to a link protocol frame

LDAPv3, first published in 1997, superseded LDAPv2 and added support for extensibility, integrated the Simple Authentication and Security Layer, and better aligned the protocol to the 1993 edition of X.500.


Open communication protocol designed for instant messaging (IM), presence information, and contact list maintenance.

A simple XMPP network with the servers and Green clients are online, yellow clients are writing each other and small green subclients are the resources of one user. The brown network is not connected to the internet. The server is connected to other IM services (ICQ, AIM and other) via XMPP transports.
A standard JID
File transfer options in a chat in Conversations, an XMPP client for Android
Alice sends a message through the XMPP net to the ICQ transport. The message is next routed to Bob via the ICQ network.
Buddy list and a multi-user chat in Spark
Jabber logo

XMPP servers can be isolated (e.g., on a company intranet), and secure authentication (SASL) and point-to-point encryption (TLS) have been built into the core XMPP specifications, as well as

Advanced Message Queuing Protocol

Open standard application layer protocol for message-oriented middleware.

Data2Dome logo

It provides flow controlled, message-oriented communication with message-delivery guarantees such as at-most-once (where each message is delivered once or never), at-least-once (where each message is certain to be delivered, but may do so multiple times) and exactly-once (where the message will always certainly arrive and do so only once), and authentication and/or encryption based on SASL and/or TLS.

Generic Security Services Application Program Interface

Application programming interface for programs to access security services.

A diagram from 1978 proposing the expansion of the idea of the API to become a general programming interface, beyond application programs alone.



General-purpose distributed memory-caching system.

For this purpose Memcached can be compiled with optional SASL authentication support.


Framework for creating network application protocols.

BEEP channels can access multiple profiles within a single session.

BEEP also includes TLS for encryption and SASL for authentication.


Extension to the Internet Relay Chat protocol, developed by Microsoft.

The first IRC server,, a Sun-3 server on display near the University of Oulu computer centre

IRCX defines ways to use Simple Authentication and Security Layer authentication to authenticate securely to the server, channel properties/metadata, multilingual support that can be queried using the enhanced "LISTX" command (to find a channel in your language), an additional user level (so there are three levels: owners, hosts, and voices), specific IRC operator levels, and full support for UTF-8 (in nicknames, channel names, and so on).


Free, open-source implementation of the Lightweight Directory Access Protocol developed by the OpenLDAP Project.

OpenLDAP Version 2.1, released in June 2002, included the transactional database backend (based on Berkeley Database or BDB), Simple Authentication and Security Layer (SASL) support, and Meta, Monitor, and Virtual experimental backends.

Apple Open Directory

LDAP directory service model implementation from Apple Inc. A directory service is software which stores and organizes information about a computer network's users and network resources and which allows network administrators to manage users' access to the resources.

For services that are not Kerberized, the Password Server provides the following Simple Authentication and Security Layer-based authentication methods: