[198] in Kerberos
missing kerberos feature needed for
jon@ATHENA.MIT.EDU (jon@ATHENA.MIT.EDU)
Sun Aug 9 21:40:58 1987
From Saltzer@ATHENA.MIT.EDU Mon Apr 27 15:02:09 1987
To: jis@ATHENA.MIT.EDU
Cc: kerberos@ATHENA.MIT.EDU
Subject: missing kerberos feature needed for mailing lists
From: Jerome H. Saltzer <Saltzer@ATHENA.MIT.EDU>
Originating-Client: <E40-391A-1.MIT.EDU>
ARPANET RFC 989 ("Privacy Enhancement for Internet Electronic Mail")
identifies a key-distribution feature that we don't currently have in
Kerberos: The ability to ask Kerberos for a bunch of tickets all of
which have the same session key inside.
The use would be in the case where one is sending a message to a
mailing list of, say, 20 other users. You would ask Kerberos for a
mail ticket for each of the 20 people (probably Kerberos would seal
mail tickets using the recipient's private key) but specify that it
should materialize a single temporary session key and seal that one
key inside every ticket.
Then you encipher the message contents once, under the session key,
and for each recipient, include that recipient's ticket in the header
of that recipient's copy.
Using the facilities that Kerberos now provides, each ticket has a
different session key inside it. If used for mail, distinct session
keys would require that the entire message text be reenciphered once
for each recipient.
This comment applies either to the case where the originator of the
message does the mailing list explosion, or where the originator
sends the message to a trusted list-exploder, in which case the
list-exploder is the one that needs the extended Kerberos function.
Comments? How soon do we need to start thinking about
privacy-enhanced mail? I suspect soon, in the M.I.T. non-Athena
context.
Jerry
