[4280] in Kerberos
Re: New Internet-Draft
daemon@ATHENA.MIT.EDU (George Michaelson)
Sun Dec 4 19:31:57 1994
To: kerberos@MIT.EDU
Date: 5 Dec 1994 10:07:37 +1000
From: ggm@dingo.cc.uq.oz.au (George Michaelson)
mamros@ftp.com (Shawn Mamros) writes:
>ggm@dingo.cc.uq.oz.au (George Michaelson) writes:
>>Until V5 is export approved, this is meaningless in the context of a
>>global internet.
>So we have silly export laws in the US. What's to stop you (or some
>other enterprising soul outside of the US) from writing your own
>Kerberos V5 implementation? I haven't seen any export restrictions
>on RFC 1510 anywhere; take that and your own DES implementation and
>run with it... Nobody ever said MIT had to be the sole provider
>of V5 source code for the entire universe.
Believe me, if I thought I could I would. I have prodded every security/crypto
person I know in Australia to write a spec-aligned version, nobody is willing
to do this. Its a bummer. Largely, its the size of the project and returns
under ITAR compliant export rules: Here on the underside the marketplace
isn't big enough to make the people (who won't do this pro bono) do it for
the domestic market alone, and the're all running from FUD about how
exportable their own product would be.
>The V4 protocol doesn't have the extensible fields that V5 has.
>Without those, there really isn't any good way to do the same thing
>in V4 that wouldn't break compatibility with existing V4 kinit
>implementations.
Ok. then at least the reasons THIS won't be done are sane!
>Global deployment does not require a single globally available
>implementation. As I said, there's nothing stopping one from writing
>their own V5 implementation, other than time and effort.
Perhaps I should wish core mit-derived KV well. Then when the export market
gets significant enough, either somebody non-US hosted will write code, or
else the US gommint will change its mind to keep the dollars coming home.
I know I send a peevish newspost. I certainly am greatful for what MIT
and others HAVE been able to make available. Great code people!
-George
--
George Michaelson
G.Michaelson@cc.uq.oz.au The Prentice Centre | There's no market for
University of Queensland | hippos in Philadelphia
Phone: +61 7 365 4079 QLD Australia 4072 | -Bertold Brecht
