Armor key negotiation in FAST
Simon.Jansen at t-systems.com
Fri Nov 23 04:14:12 EST 2012
> The privileged process needs to provide the sub-session key to the unprivileged process. (If you reread that sentence, it says that three pieces of information are given, not two.)
Oh, I'm sorry. You are right. I interpreted the sentence in a wrong way.
But the question is still there. If the unprivileged process builds the armor key it needs the ticket session key. How is ensured that the user process gets the key?
More information about the Kerberos