This memorandum describes a method whereby one can use GSS-API [RFC2078] to supply a secure channel between a client and server@ authenticating the client with a password@ and a server with a public key certificate. As such@ it is analogous to the common low infrastructure usage of the Transport Layer Security (TLS) protocol [RFC2246]. The method leverages the existing Simple Public Key Mechanism (SPKM) [RFC2025]@ and is specified as a separate GSS-API mechanism (LIPKEY) layered above SPKM.
RFC 2847-2000 history
2000RFC 2847-2000 LIPKEY - A Low Infrastructure Public Key Mechanism Using SPKM