krb5-misc/1078: des3-hmac-sha1 should be renamed to des3-cbc-hmac-sha1-kd
William Fiveash
willf at alton.central.sun.com
Mon Mar 25 17:46:07 EST 2002
>Number: 1078
>Category: krb5-misc
>Synopsis: des3-hmac-sha1 should be renamed to des3-cbc-hmac-sha1-kd
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: krb5-unassigned
>State: open
>Class: change-request
>Submitter-Id: unknown
>Arrival-Date: Mon Mar 25 17:47:00 EST 2002
>Last-Modified:
>Originator: William Fiveash
>Organization:
Sun Microsystems
>Release: krb5-1.2.4
>Environment:
System: SunOS alton 5.8 Generic_108528-09 sun4u sparc SUNW,Ultra-5_10
Architecture: sun4
>Description:
I've noticed that the newer MIT Kerberos distributions support a
des3-hmac-sha1 enctype. (Note this is associated with the
#define ENCTYPE_DES3_CBC_SHA1 0x0010
found in krb5.h). The draft-ietf-krb-wg-crypto-00.txt defines a
des3-cbc-hmac-sha1-kd enctype with value 16 and also mentions a
des3-cbc-sha1 enctype with value 7. Is MIT going to change the name
of their des3-hmac-sha1 enctype used in the various config files to
des3-cbc-hmac-sha1-kd to conform to draft-ietf-krb-wg-crypto-00.txt?
Will the ENCTYPE_DES3_CBC_SHA1 define be renamed to something that
more closely resembles the des3-cbc-hmac-sha1-kd name as well?
>How-To-Repeat:
>Fix:
>Audit-Trail:
>Unformatted:
More information about the krb5-bugs
mailing list