[15763] in Kerberos_V5_Development

home help back first fref pref prev next nref lref last post

RE: RFC 4121 - Context Deletion Tokens

daemon@ATHENA.MIT.EDU (Srinivas Cheruku)
Fri May 7 00:01:05 2010

From: "Srinivas Cheruku" <srinivas.cheruku@gmail.com>
To: "'Nicolas Williams'" <Nicolas.Williams@oracle.com>
In-Reply-To: <20100506153444.GQ9429@oracle.com>
Date: Fri, 7 May 2010 09:30:51 +0530
Message-ID: <4be39078.0207e30a.3996.7052@mx.google.com>
MIME-Version: 1.0
Content-Language: en-us
Cc: ietf-krb-wg@anl.gov, krbdev@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu

>         and no GSS is involved in doing so?

Well, you'd want to protect the application "delete context" message
with a MIC or a wrap.

[Srinivas Cheruku] Do you mean that we can generate a MIC token with message
as NULL for delete context and can be sent to the peer and this is an
interoperable approach? Is there any interoperable way of signalling delete
context to the peer?

Thanks,
Srini

_______________________________________________
krbdev mailing list             krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev

home help back first fref pref prev next nref lref last post