[kitten] Verified authorization data

[Simo Sorce]

On Wed, 2014-06-11 at 14:20 +0200, Peter Mogensen wrote:
> The solution in AD-CAMMAC seems very complex too, requiring
> effectively calculating the entire EncTicketPart twice - and once for
> every present AD-CAMMAC present.

I am confused about this statement. The AD-CAMMAC draft specifies that
it contains a sequence of AD elements, that means you have only 1
AD-CAMMAC for all the AD data you want to protect. You check the whole
thing only once.

Simo.

-- 
Simo Sorce * Red Hat, Inc * New York