W3C home > Mailing lists > Public > ietf-http-wg-old@w3.org > May to August 1996

Re: Proposal for two new authentication schemes...

From: Dave Kristol <dmk@allegra.att.com>
Date: Tue, 7 May 96 12:00:54 EDT
Message-Id: <9605071600.AA07604@zp.tempo.att.com.tempo.att.com>
To: hallam@vesuvius.ai.mit.edu
Cc: http-wg%cuckoo.hpl.hp.com@hplb.hpl.hp.com
X-Mailing-List: <http-wg@cuckoo.hpl.hp.com> archive/latest/447
hallam@vesuvius.ai.mit.edu wrote:
  > Dave writes:
  > >This is functionally equivalent to Netscape's cookie scheme, a
  > >derivative of which is being standardized as an HTTP "state management"
  > >proposal.  For the current set of documents, see
  > >http://www.research.att.com/~dmk/cookie.html.
  > I'm not so sure that this is the case, was the proposal for an authentication
  > token to be created by the client or by the server? If the token is created by 
  > the client then there is nothing to distinguish this scheme from cookies.

I hope you meant "created by the *server*", in which case I agree.

Received on Tuesday, 7 May 1996 09:14:37 UTC

This archive was generated by hypermail 2.3.1 : Wednesday, 7 January 2015 14:40:17 UTC