[4266] in Kerberos
New Internet-Draft
daemon@ATHENA.MIT.EDU (Glen Zorn)
Wed Nov 30 20:53:47 1994
To: kerberos@MIT.EDU
Date: 1 Dec 1994 01:16:27 GMT
From: glenz@geek.ocsg.com (Glen Zorn)
Folks ~
Cliff Neuman and I have just completed a new Internet-Draft entitled
"Integrating One-time Passwords with Kerberos". Here is the abstract:
This document defines extensions to the Kerberos protocol specifi-
cation (RFC 1510, "The Kerberos Network Authentication Service
(V5)", September 1993) which provide a method by which a variety of
one-time password mechanisms may be supported within the protocol.
The method defined specifies a standard fashion in which the preau-
thentication data and error data fields in Kerberos messages may be
used to transport one-time password data.
One-time passwords, in this context, means token cards (like SecurID,
Watchword, etc.) and software-based schemes such as S/Key. To obtain
this Internet-Draft via anonymous FTP, ftp to one of the Internet-Draft
shadow servers (ds.internic.net (US East Coast), nic.nordu.net
(Europe), ftp.isi.edu (US West Coast), or munnari.oz.au (Pacific Rim))
and login using username `anonymous` and password `guest`. Change
directories to `internet-drafts` and get the file
`draft-ietf-cat-kerberos-passwords-00.txt`.
--
~ gwz
Glen Zorn Senior Scientist
glenz@OCSG.COM CyberSafe Corporation
Since I was forced to write it by the alien parasite which attached itself to
my brain stem during my recent visit to an isolated area of Northern Arizona,
it could hardly be construed that this message would reflect either the
opinions or policies of my employer.
