New whitepaper on Kerberos-on-the-Web

Thomas Hardjono hardjono at MIT.EDU
Tue Feb 3 14:11:21 EST 2009

MIT-KC publishes new whitepaper on Kerberos-on-the-Web.


One of the major goals of the MIT-KC is to establish Kerberos as a
ubiquitous authentication mechanism on the Internet and also to make
Kerberos appropriate for new environments. One of the key efforts within the
MIT-KC directed at this goal is the Kerberos-on-the-Web (Kerb-Web) project.


The Kerberos-on-the-web project seeks initially to investigate the various
aspects of the development and deployment of Kerberos within the Web space.
This includes, among others:

(a) the use of the Kerberos authentication paradigm within the context of
web-authentication and web-services security,

(b) the possible architecture integration and interactions between the
Kerberos infrastructure and web-services security infrastructure,

(c) the possible enhancements of the Kerberos authentication protocol and
Kerberos token in order to address the requirements for Single-Sign-On (SSO)
on the Web and Web Identity Federation, and

(d) the potential re-use of existing Kerberos infrastructure investments in
enterprises and other organizations to support the deployment of
Kerberos-on-the-Web solutions.


In order to provide a starting point and context for discussions going
forward regarding Kerberos-on-the-web, the MIT-KC has published a whitepaper
on this topic.  The whitepaper can be found in the following location:


The MIT-KC would appreciate your inputs and comments regarding this
whitepaper, and also your suggestions and recommendations more broadly
regarding the Kerberos-on-the-Web project.




Thomas Hardjono







Thomas Hardjono

MIT Kerberos Consortium

Massachusetts Institute of Technology

77 Massachusetts Ave W92-152

Cambridge, MA 02139


email:  hardjono[at]


mobile: +1 781.729.9559




-------------- next part --------------
kerberos-announce mailing list
kerberos-announce at

More information about the krbdev mailing list