[38491] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Data privacy in KDC

daemon@ATHENA.MIT.EDU (Yegui Cai)
Mon Mar 4 11:46:03 2019

MIME-Version: 1.0
From: Yegui Cai <caiyegui@gmail.com>
Date: Mon, 4 Mar 2019 11:45:11 -0500
Message-ID: <CAJYMFR4NKkOYeoaip7u=pS1R5F6cS8DCpobn_EjApTN4mq+YVg@mail.gmail.com>
To: <kerberos@mit.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu

Hi all.

I have some questions regarding data privacy in KDC.
1. If I have multiple tenants sharing the same KDC (say, a tenant is mapped
into a realm), how KDC make sure that the data is segregated between realms?
2. Similar questions regarding logs. Is there any way to segregate logs
between different realms?
3. If I use the default data storage (Berkeley DB if my understanding is
correct), how data is encrypted at rest?

Thanks a lot!
Yegui Cai
________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[38491] in Kerberos

Data privacy in KDC

daemon@ATHENA.MIT.EDU (Yegui Cai)Mon Mar 4 11:46:03 2019

daemon@ATHENA.MIT.EDU (Yegui Cai)
Mon Mar 4 11:46:03 2019