©January 1998, The Open Group All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording or otherwise, without the prior permission of the copyright owners.

Motif,® OSF/1,® UNIX,® and the "X Device"® are registered trademarks and IT DialTone^TM; and The Open Group^TM; are trademarks of The Open Group in the U.S. and other countries.

Product Standard

NAME

Secure Communication Services

LABEL FOR LOGO

No label.

DESCRIPTION

A product registered as conformant to this Product Standard provides a secure communication context when interoperating with similar systems as part of a distributed system. Within this secure context it must support the authentication and integrity feature sets defined in the X/Open GSS-API Specification.¹ It may also optionally support the confidentiality and delegation feature sets.

These services are accessible via a programming interface, the Generic Security Service API (GSS-API). The security services are independent of particular communications services and protocols, but can be used in conjunction with various communications services and protocols to provide secure communication. Details of the particular authentication technology employed (for example, Kerberos, KryptoKnight), must be stated in the Conformance Statement associated with any conformant system.

CONFORMANCE REQUIREMENTS

To conform to this Product Standard a system must support all mandatory functionality defined in the referenced specification, and make appropriate declarations concerning the security mechanism technology as defined below.

Human-Computer Interface

Not applicable.

Portability Interface

X/Open GSS-API Specification, Part 1: GSS-API, Part 2: C-language Bindings.

Programming Language Environment

ISO C Language.² ISO C language source programs invoking the services of this Product Standard must be supported by the registered product.

Interoperability

• Data Interchange Formats

  X/Open GSS-API Specification, Section 5.2, Mechanism-independent Token Format.

• Communications Interfaces and Protocols

  No specific security mechanism technologies are mandated, but full details of the actual authentication technology (for example, Kerberos, KryptoKnight), together with any associated implementation options where compatibility is required to ensure interoperability, must be recorded in the Conformance Statement. These details indicate with which other systems the product is likely to interoperate.

OPERATIONAL ENVIRONMENT

Not applicable.

PORTABILITY ENVIRONMENT

Not applicable.

OVERRIDING STANDARDS

None.

INDICATORS OF COMPLIANCE

None.

MIGRATION

Not applicable.

Any comments relating to the material contained in this document may be submitted to The Open Group at:

The Open Group
Apex Plaza
Forbury Road
Reading
Berkshire, RG1 1AX
United Kingdom

OGSpecs@opengroup.org

Footnotes

1.

CAE Specification, December 1995, Generic Security Service API (GSS-API) Base (ISBN: 1-85912-131-4, C441).

2.

ISO/IEC 9899:1990: Programming Languages - C.