[2655] in Kerberos
Prerelease of revision 5.2 of the Kerberos V5 draft
daemon@ATHENA.MIT.EDU (Clifford Neuman)
Mon Mar 29 22:57:02 1993
Date: Mon, 29 Mar 1993 19:43:04 -0800
From: Clifford Neuman <bcn@ISI.EDU>
To: cat-ietf@MIT.EDU, kerberos@MIT.EDU, krb-protocol@MIT.EDU
The latest version of the Kerberos V5 Spec, pre revision 5.2, is
available from prospero.isi.edu in the file
/pub/papers/security/kerberos-pre52.ps.Z and
/pub/papers/security/kerberos-pre52.lpt.Z
There have been no changes to previously specified portions of the
protocol. Some wording has been clarified, and some missing
pseudocode has been added. We have also specified the encrypted
timestamp pre-authentication method and have defined a new protocol
message KRB_CRED to be used to pass proxies or forwarded tickets to
remote hosts. This latter change was to provide a well defined
procedure so that applications would do it correctly.
Comments on this draft are due by April 10, 1993. At that time,
barring any serious objections, a final revision will be prepared and
released as an Internet draft by April 15. Our plans are to submit it
for publication as an RFC at that time, together with other documents
in the IETF common authentication technology working group.
Please review the document and provide comments to me and/or the
mailing list krb-protocol@mit.edu. I am particularly interested in
comments on improvement of the pseudocode. Also pay particular
attention the the definition of the ENC-TIMESTAMP pre-authentication
method, and all sections pertaining to the new KRB-CRED message.
Thanks,
Clifford Neuman
