Review of AEAD Encryption API Project; concluding December 5, 2008

Love Hörnquist Åstrand lha at
Mon Nov 24 14:43:39 EST 2008

I find this very un-important since what matters is the gss-api  

Also, changing the API have reprocusions for Heimdal that have the  
same API (in abstract).


24 nov 2008 kl. 20:28 skrev Sam Hartman:

> Folks, I'm calling for a review of
> AEAD_encryption_API                              .
>   The Microsoft SSPI provides an interface for in-place encryption  
> of messages (see
>      MS-KILE section This interface also permits  
> additional data to be included
>         in the checksum generated to protect integrity. Such a  
> facility is called authenticated
>            encryption with additional data (AEAD). The SSPI works at  
> the GSS-API layer, rather than
>               the raw Kerberos layer.
>                  This project proposes to extend the raw Kerberos  
> cryptographic API (krb5_c_*) in order
>                     to make it possible to implement these SSPI  
> facilities in an extension to the GSS-API.
>                        The ultimate consumer of these applications  
> is typically DCE-style RPC, although the
>                           facilities could be used by other  
> applications.
> _______________________________________________
> krbdev mailing list             krbdev at

More information about the krbdev mailing list