[703] in Kerberos
session key for broadcast service -- how?
daemon@TELECOM.MIT.EDU (Clifford Neuman)
Sun Apr 30 23:21:00 1989
From: bcn@JUNE.CS.WASHINGTON.EDU (Clifford Neuman)
To: dunigan@msr.epm.ornl.gov
Cc: kerberos@ATHENA.MIT.EDU
In-Reply-To: Tom Dunigan 576-2522's message of Tue, 25 Apr 89 09:45:21 EDT <8904251345.AA09920@MSR.EPM.ORNL.GOV>
Date: Tue, 25 Apr 89 09:45:21 EDT
From: dunigan@MSR.EPM.ORNL.GOV (Tom Dunigan 576-2522)
is there a mechansim for a "broadcast server" to request a session
key, and then have clients be able to request that same session key
so they can verify the "safe" messages from the broadcast server?
Are the clients trusted? If not, then this scenario requires public
key cryptography since all the clients will know the key. If you
trust all the clients and can accept each client having the ability to
impersonate the server, then all that is needed is a way to generate
multiple tickets containing a common session key. Allowing this is
under consideration.
~ Cliff
