question about des3-hmac-sha1 and des3-cbc-hmac-sha1-kd in MIT code
william.fiveash at sun.com
Mon Mar 25 17:26:00 EST 2002
I've noticed that the newer MIT Kerberos distributions support a
des3-hmac-sha1 enctype. (Note this is associated with the
#define ENCTYPE_DES3_CBC_SHA1 0x0010
found in krb5.h). The draft-ietf-krb-wg-crypto-00.txt defines a
des3-cbc-hmac-sha1-kd enctype with value 16 and also mentions a
des3-cbc-sha1 enctype with value 7. Is MIT going to change the name
of their des3-hmac-sha1 enctype used in the various config files to
des3-cbc-hmac-sha1-kd to conform to draft-ietf-krb-wg-crypto-00.txt?
Will the ENCTYPE_DES3_CBC_SHA1 define be renamed to something that
more closely resembles the des3-cbc-hmac-sha1-kd name as well?
Sun Microsystems Inc.
Austin, TX, USA (TZ=CST6CDT)
More information about the krbdev