• "Access Authorization Overview - Basic Protection Scheme," [http://www.w3.org/pub/WWW/AccessAuthorization/Basic.html]

Message Digestion Authentication

• Jeffery L. Hostetler, John Franks, Philip Hallam-Baker, Paul Leach, Ari Luotonen, Eric W. Sink and Lawrence C. Stewart, "A Proposed Extension to HTTP : Digest Access Authentication," March 1996 [http://uniwa.uwa.edu.au/wn/digestauth/]

• Dave Raggett, "Mediated Digest Authentication," HP Labs, March 1995 [http://www.hpl.hp.co.uk/people/dsr/security/Authentication.html]

• Phillip Rogaway, "Design and Analysis of Message Authentication Codes," The 1996 RSA Data Security Conference, January 19, 1996 [http://wwwcsif.cs.ucdavis.edu/~rogaway/talks/list.html]

• Message Authentication Research

• Mosaic User Authentication Tutorial

Secure HTTP(S-HTTP)

• E. Rescorla and A. Schiffman, "The Secure HyperText Transfer Protocol," Terisa Systems, Inc., July 1996 [ftp://ftp.ietf.org/internet-drafts/draft-ietf-wts-shttp-03.txt]

• E. Rescorla and A. Schiffman, "Security Extensions For HTML," Terisa Systems, Inc., July 1996 [ftp://ftp.ietf.org/internet-drafts/draft-ietf-wts-shtml-02.txt]

• "SecureWeb Toolkit™- Universal Security for the Web," Terisa [http://www.terisa.com:80/products/toolkits.html]

• Terisa Systems SecureWeb Toolkit

W3C's Protocol Extension Protocol(PEP)/Secure Extension Architecture(SEA)

• Rohit Khare, "SEA: A Security Extension Architecture for HTTP/1.x," January 1996 [http://xent.w3.org/FoRK-archive/spring96/0020.html]

• Rohit Khare, "HTTP/1.2 Extension Protocol (PEP)," World Wide Web Consortium, August 1996 [http://ds0.internic.net/internet-drafts/draft-ietf-http-pep-00.txt]

CERN's Shen

• Phillip M. Hallam-Baker, Henrik Frystyk Nielsen and Ari Luotonen, "Shen Security Enhancements to HTTP," CERN [http://www.ncsa.uiuc.edu/SDG/IT94/Proceedings/Security/hallam-baker/Shen/Documentation/paper.html]

• Shen: A Security Scheme for the World Wide Web

NCSA's Pretty Good Privacy-Common Client Interface(PGP-CCI)

• Judson D. Weeks, Adam Cain and Briand Sanderson, "CCI-Based Web Security: A Design Using PGP," [http://sdg.ncsa.uiuc.edu/~jweeks/www4/paper/current_rev.html]

• Using PGP/PEM encryptio

Secure Electronic Transanction(SET) Protocol

• T.M.A. Lomas, "SET (Secure Electronic Transactions)," Computer Security Group, University of Cambridge Computer Laboratory, 1996 [http://www.cl.cam.ac.uk/Research/Security/ECommerce/set.html]

• Microsoft and VISA to Provide Secure Transaction Technology for Electronic Commerce

• "VISA & MASTERCARD Join Forces for Security", [http://www.luckman.com/lux/vmcard.html]

Netscape's Secure Socket Layer(SSL)

• Alan O. Freier, Philip Karlton, and Paul C. Kocher, "The SSL Protocol Version 3.0," Netscape Communications & Independent Consultant, March 1996 [http://home.netscape.com/eng/ssl3/]

• T. J. Hudson and E. A. Young, "SSLeay and SSLapps FAQ," November 1996 [http://psych.psy.uq.oz.au/~ftp/Crypto/]

• "SSL tunneling and the proxy," Netscape [http://developer.netscape.com/library/one/sdk/proxy/unixguide/ssl-tunl.htm]

• The SSL Protocol - Netscape

Microsoft's Private Communication Technology(PCT)

• Josh Benaloh, Butler Lampson, Daniel Simon, Terence Spies and Bennet Yee, "Private Communication Technology Protocol," Microsoft Corp., September 1995 [http://www.lne.com/ericm/pct.html]

OSF's Distributed Computing Environment-Web(DCE-Web)

• DCE-Web Project

• Steve Lewontin and Mary Ellen Zurko, " The DCE Web Project: Providing Authorization and Other Distributed Services to the World Wide Web," OSF Research Institute [http://www.osf.org/www/dceweb/papers/Conf_94.html]

• "OSF DCE Web Technologies Q and A," [http://www.osf.org/www/dceweb/SWintro.html]

• Steve Lewontin, "Securing the Enterprise Web," Open Group Research Institute, July 1996 [http://www.osf.org/www/enhance/swwhitep.htm]

• Steve Lewontin, "Enhancing the Secure Web," OSF Research Institute, July 1996 [http://www.osf.org/www/enhance/enhance.htm]

Kerberizing the Web

• Adam Cain, "Kerberizing the Web," NCSA, June 1995 [http://snapple.ncsa.uiuc.edu/adam/khttp/intro.html]