[35996] in Kerberos
Re: NSA backdoor risks in Kerberos
daemon@ATHENA.MIT.EDU (Tom Yu)
Wed Apr 2 23:42:30 2014
To: dan@geer.org
From: Tom Yu <tlyu@mit.edu>
Date: Wed, 02 Apr 2014 23:42:17 -0400
In-Reply-To: <20140403032341.302F52280BA@palinka.tinho.net> (dan@geer.org's
message of "Wed, 02 Apr 2014 23:23:41 -0400")
Message-ID: <ldvtxabjcyu.fsf@cathode-dark-space.mit.edu>
MIME-Version: 1.0
Cc: "kerberos@mit.edu" <kerberos@mit.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
dan@geer.org writes:
> > Has there been a technical writeup of potential backdoor risks in
> > Kerberos, similar to the stuff that keeps coming out about various RSA
> > products:
>
> negative
In contrast, there is some published research showing that the
cryptographic constructs used in modern versions of the Kerberos
protocol are (somewhat surprisingly) provably secure:
http://www.cc.gatech.edu/~aboldyre/papers/kerberos.pdf
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
