[435] in Kerberos
Liftimes in tickets
daemon@TELECOM.MIT.EDU (Clifford Neuman)
Fri Jul 8 16:15:37 1988
From: Clifford Neuman <bcn%arctic.uit.uninett@TOR.NTA.NO>
To: <kerberos@ATHENA.MIT.EDU>
This message is based on very little knowledge of what has been discussed
on this issue so far. I am in Norway, and I do not have my
mail forwarded to me. If you reply, please cc this address directly
if you want me to see the message before I get home in two weeks.
Anyway, I think I agree with the CMU people. The choice of 1 byte
and 5 minute granularity was made for efficiency reasons. It was
an acceptable choice for the Athena environment, but if we expect
Kerberos to become a standard, then we have to make it useful when people
want liftimes that are longer than are allowed in the current implementation.
Now is the time to do it.
I would also suggest changing the granularity to
1 minute. 5 minutes was chosen because given 1 byte, that allowed
a reasonable range for uses that we expected in our environment. Without
the one byte restriction, 5 becomes a somewhat arbitrary choice. If
someone can suggest a choice that is intuitively more appropriate than
1 minute, choose that as the granularity.
By the way, at this course (ARCTIC '88) Kerberos has been mentioned
a couple of times, and a number of people seem to think that it
is likely get wider use and to become a standard in the same manner
X did.
~ Cliff
