Thoughts on a Kerberos based open-authorization architecture.

[Ken Hornstein]

>This is almost exactly what we've been doing at Iowa State for the
>last dozen years or so.  The client side, is indeed very simple,
>send message, get reply.  The server side I made arbitrarily complex
>because it supports nested lists, and I invert and flatten the lists
>in memory to make lookup as quick as possible.

Well, hell, John .... how about a pointer to where we could download it? :-)
I won't even care if it's got a bunch of Kerberos 4 dependencies :-)

--Ken