Proposed modifications to replay cache to prevent false positives
raeburn at MIT.EDU
Thu Jun 2 15:58:37 EDT 2005
On Jun 2, 2005, at 15:37, Sam Hartman wrote:
> Here's an example of what I'm talking about. Change the encoding of
> the enctype in the EncryptedData sequence to be non-minimal length.
> AN attacker can do this to perform a replay.
Oh, duh, yes. Once again, I read it too quickly... *sigh*
Only the ciphertext itself is actually of interest.
More information about the krbdev