You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@directory.apache.org by "Enrique Rodriguez (JIRA)" <ji...@apache.org> on 2007/04/04 06:06:32 UTC
[jira] Commented: (DIRSERVER-141) Add DES3-CBC-SHA1-KD encryption
system
[ https://issues.apache.org/jira/browse/DIRSERVER-141?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12486567 ]
Enrique Rodriguez commented on DIRSERVER-141:
---------------------------------------------
More information:
Encryption and Checksum Specifications for Kerberos 5
http://www.ietf.org/rfc/rfc3961.txt
> Add DES3-CBC-SHA1-KD encryption system
> --------------------------------------
>
> Key: DIRSERVER-141
> URL: https://issues.apache.org/jira/browse/DIRSERVER-141
> Project: Directory ApacheDS
> Issue Type: New Feature
> Components: kerberos
> Reporter: Enrique Rodriguez
> Assigned To: Enrique Rodriguez
> Priority: Minor
> Fix For: 1.5.1
>
>
> The DES3-CBC-SHA1-KD encryption system is now supported on the client side in JDK 5, so we'll probably see demand for it on the server-side at some point:
> Kerberos Enhancements for J2SE 5
> http://java.sun.com/j2se/1.5.0/docs/guide/security/jgss/jgss-tiger.html
> In case anyone would like to tackle a bit-sized piece of work on the Kerberos project, we will at some point need a Key Derivation Function as used in the DES3-CBC-SHA1-KD encryption system.
> Key Derivation Function
> http://mirrors.isc.org/pub/www.watersprings.org/pub/id/draft-ietf-cat-kerb-key-derivation-00.txt
> I have to look into whether we can use this straight out of JDK 5, but we may still need it for JDK 1.4.2 and earlier.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.