GSS-krb5 and enctype lists, revisited
smichaud at pobox.com
Fri Apr 18 12:44:10 EDT 2003
So, before _too_ long, the problem that Ken Raeburn's talking about
should disappear. This seems to strengthen the argument for an
interim solution -- one that doesn't permanently (publicly) change the
MIT Kerberos API.
On Fri, 18 Apr 2003, Nicolas Williams wrote:
> On Fri, Apr 18, 2003 at 10:26:15AM -0500, Steven Michaud wrote:
> > You've already "extended" RFC 1964 ("The Kerberos Version 5 GSS-API
> > Mechanism") to add DES3 and RC4. Why not throw in AES, too?
> This time the work of extending RFC1964 is being done at the IETF. It
> will take longer than if done privately, but the result will be better.
More information about the krbdev