[5552] in Kerberos
Re: packet encryption between client and server programs
daemon@ATHENA.MIT.EDU (Frank Lonigro)
Tue Jul 25 14:36:21 1995
To: kerberos@MIT.EDU
Date: 25 Jul 1995 18:01:18 GMT
From: franco@bu.edu (Frank Lonigro)
Hi:
I should have stated that I'm interrested in a Kerberos-v4 solution.
The GSS-API sounds interresting, but I don't think it will work with v4.
Please correct me if I'm wrong.
What I was thinking would work, and maybe there is a better way and
I'm way off, is to have the user-client authenticate and then perform a mutual
authentication with my server application. Somehow, both sides remember what
the user-clients session-key is and then that is the key that encrypts and
decrypts the packets exchanged between the user-client and the server until
the user-client closes the connection. Does this sound right?
Let me know if there is a better way.
Thanks,
-franco
Frank Lonigro (franco@bu.edu) wrote:
: I have a client/server application for which I want to encrypt the packets
: sent to the server and the server decrypts the packets and then acts on the
: data contained in the packets.
: What are the various ways in which I can use kerberos routines to do the
: encryption and decryption of the packets? I'm not really interrested in
: hard coding a password in the client or server. There must be a way of
: achieving what I want without hard coding a password.
: Any and all help will be appreciated.
: Thanks,
: -franco
---
Frank Lonigro -- Senior Systems Programmer/Analyst
franco@bu.edu -- Boston University/Office of Information Technology
