[1851] in Kerberos-V5-bugs


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

k5 gss doesn't conform to spec

daemon@ATHENA.MIT.EDU (Richard Basch)
Fri Mar 29 02:12:25 1996

Date: Fri, 29 Mar 1996 02:10:49 -0500
To: krb5-bugs@MIT.EDU
From: "Richard Basch" <basch@lehman.com>

1.2.2.1 Checksum

  DES MAC MD5 algorithm ... A standard 64-bit DES-CBC MAC is computed per
  [FIPS PUB 113], employing the context key and a zero IV.

If you follow the checksum logic, it uses the key as the IV.

No wonder I was going crazy trying to rewrite my code to work with the
old servers.

Richard Basch                   
Sr. Developer/Analyst           URL: http://web.mit.edu/basch/www/home.html
Lehman Brothers, Inc.           Email: basch@lehman.com, basch@mit.edu
101 Hudson St., 33rd Floor      Fax:   +1-201-524-5828
Jersey City, NJ 07302-3988      Voice: +1-201-524-5049


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[1851] in Kerberos-V5-bugs

k5 gss doesn't conform to spec

daemon@ATHENA.MIT.EDU (Richard Basch)Fri Mar 29 02:12:25 1996

daemon@ATHENA.MIT.EDU (Richard Basch)
Fri Mar 29 02:12:25 1996