This erratum is correct. This was a mistake I made when we renamed the auth scheme: I did a textual search-and-replace and forgot to change the hex. David On Thu, Mar 5, 2026 at 7:30 AM RFC Errata System <rfc-editor@rfc-editor.org> wrote: > The following errata report has been submitted for RFC9729, > "The Concealed HTTP Authentication Scheme". > > -------------------------------------- > You may review the report below and at: > https://www.rfc-editor.org/errata/eid8807 > > -------------------------------------- > Type: Technical > Reported by: Radowan Redoy <snf4za@virginia.edu> > > Section: 3.3 > > Original Text > ------------- > 48545450205369676E61747572652041757468656E7469636174696F6E > > Corrected Text > -------------- > 4854545020436F6E6365616C65642041757468656E7469636174696F6E > > Notes > ----- > The original hex in Figure 3 corresponds to "HTTP Signature > Authentication", which is the wrong context string. Thus, it should be > updated to the correct hex to reflect "HTTP Concealed Authentication" as > specified in Section 3.3. > > Instructions: > ------------- > This erratum is currently posted as "Reported". (If it is spam, it > will be removed shortly by the RFC Production Center.) Please > use "Reply All" to discuss whether it should be verified or > rejected. When a decision is reached, the verifying party > will log in to change the status and edit the report, if necessary. > > -------------------------------------- > RFC9729 (draft-ietf-httpbis-unprompted-auth-12) > -------------------------------------- > Title : The Concealed HTTP Authentication Scheme > Publication Date : February 2025 > Author(s) : D. Schinazi, D. Oliver, J. Hoyland > Category : PROPOSED STANDARD > Source : HTTP > Stream : IETF > Verifying Party : IESG >
Received on Thursday, 5 March 2026 21:23:31 UTC