[567] in Kerberos
Re: changing master key on database
daemon@TELECOM.MIT.EDU (Jeffrey I. Schiller)
Wed Jan 4 18:33:26 1989
From: Jeffrey I. Schiller <jis@ATHENA.MIT.EDU>
To: jtkohl@ATHENA.MIT.EDU
Cc: kerberos@ATHENA.MIT.EDU
In-Reply-To: John T Kohl's message of Wed, 4 Jan 89 11:03:02 EST <8901041603.AA26691@LYCUS.MIT.EDU>
From my point of view I have yet to see a reason to change the
key's version number when the master key is changed. In fact there
with things as currently implemented, there isn't really a need to
implement the incrementing of the master key version number. Now if
kerberos was modified so that KDCs were implemented as a set of
distributed database servers (say as opposed to the simple
master/slave relationship now implemented) or if support was simply
added to handle keys encrypted in multiple master keys (ie. you have
to have "N" master keys active to operate) then the version number
becomes important, otherwise I don't see the need...
-Jeff
