Simple Authentication and Security Layer
SASL is a framework that lets protocols like LDAP, SMTP, and IMAP plug in different authentication mechanisms without changing the protocol itself. A client and server negotiate a mechanism, such as SCRAM or GSSAPI for Kerberos, and then exchange the mechanism's messages. It decouples how you authenticate from what protocol you are speaking.