keberos v5 and WS-Security specification question
Gilbert Pilz
gil at nowhere.com
Mon Jan 13 15:13:31 EST 2003
WS-Security does not support GSS-API tokens, but the specifications
underway by the OASIS Web Services Security Technical Committee (which
accepted WS-Security as a starting point) do. Check out
http://www.oasis-open.org/committees/wss/documents/WSS-Core-08-1212-
merged.pdf and http://www.oasis-open.org/committees/wss/documents/WSS-
Kerberos.pdf. Obviously these specifications are still in flux, so you
wouldn't want to get too attached to the details . . .
Gilbert Pilz
E2open
In article <200210010352.NAA88325 at au.padl.com>, lukeh at PADL.COM says...
>
> From my brief reading of the WS-Security spec it doesn't look like
> the GSS-API token format is used.
>
> -- LUke
>
> >From: Mitko Iliev <imitko at yahoo.com>
> >Subject: keberos v5 and WS-Security specification question
> >To: kerberos at mit.edu
> >Date: Mon, 30 Sep 2002 08:12:22 -0700 (PDT)
> >
> >hello all,
> >
> >i'm implementing a SOAP server which is supposed use
> >Kerberos v5 TGS tickets to encrypt/sign the data using
> >WS-Security specification by microsoft.
> >But my problem is that i can't extract with GSSAPI
> >encryption or signing algorithm (this is needed to
> >make properly the <enc:EncryptionMethod Algorithm="">
> >element).
> >
> >Could anyone help me ?
> >
> >Thanks in advance,
> >Mitko Iliev
> >
> >=====
> >-------------------------------------------------------
> > Homo homenes lupus est.
> >////////////////////////////////////////////////////////
> >
> >__________________________________________________
> >Do you Yahoo!?
> >New DSL Internet Access from SBC & Yahoo!
> >http://sbc.yahoo.com
> >________________________________________________
> >Kerberos mailing list Kerberos at mit.edu
> >http://mailman.mit.edu/mailman/listinfo/kerberos
>
> --
> Luke Howard | PADL Software Pty Ltd | www.padl.com
> ________________________________________________
> Kerberos mailing list Kerberos at mit.edu
> http://mailman.mit.edu/mailman/listinfo/kerberos
>
>
More information about the Kerberos
mailing list