[6839] in Kerberos
Using DCE secd as a Kerberos 5 KDC (fwd)
daemon@ATHENA.MIT.EDU (Doug Engert)
Wed Mar 6 18:36:06 1996
Date: Wed, 6 Mar 1996 17:17:12 -0600
From: Doug Engert <DEEngert@anl.gov>
To: lemson@uiuc.edu
Cc: kerberos@MIT.EDU
In-Reply-To: <199603052308.RAA42502@penguin.cso.uiuc.edu>
David Lemson writes:
> Along these lines, I am very interested in the ability to use a MIT V5
> KDC as a secd. Rich Salz alluded to this possibility in his talk on
> new OSF DCE features at DECORUM last week. Can anyone confirm that
> we'll be able to use our existing KDC (with those 90,000 passwords
> that 90,000 people already know) with a DCE cell (in 1.2.1, according
> to Rich)? Perhaps we'll have to upgrade to a later beta release of
> V5 KDC?
>
Dave,
As pointed out in another response to you, you may have gotten this
backwards.
But at the ISOC Symposium on Network and Distributed System Security
meeting in San Diego the week before Decorum, Jonathan T. Trostle
(CyberSAFE) and B. Clifford Neuman (ISI) preseneted a paper "A
Flexible Distributed Authorization Protocol", which describes
modification to Kerberos to support PACs. In the summary it says:
"With respect to OSF DCE, our protocol supports both existing and
planned OSF DCE security functionality." You may which to read the
article or contact the authors for more information.
Douglas E. Engert
Systems Programming
Argonne National Laboratory
9700 South Cass Avenue
Argonne, Illinois 60439
(708) 252-5444
Internet: DEEngert@anl.gov
