[7694] in Kerberos
Re: A Defence of SESAME
daemon@ATHENA.MIT.EDU (Jonathan I. Kamens)
Tue Jul 30 11:04:10 1996
To: kerberos@MIT.EDU
Date: 30 Jul 1996 14:50:11 GMT
From: jik@cam.ov.com (Jonathan I. Kamens)
In article <4tkj8u$dvd$1@mhafn.production.compuserve.com>, Tom Parker <100325.474@CompuServe.COM> writes:
[Mr. Parker posted an article defending SESAME against Schneier's
criticisms of it in "Applied Cryptography" 2nd Ed. I am eliding most
of Parker's article because I wish to respond only to some of the
points he makes about Kerberos. Readers who are interested in the
entire article can find it in sci.crypt or alt.security. I have
directed followups to comp.protocols.kerberos.]
|> The description is slanted because it does not similarly
|> criticise the Kerberos V4 "bones" implementation, which is the
|> only version of Kerberos legally available outside the USA, and
|> which not only has no cryptography in it, but also doesn't have
|> the low level interfaces with which to be able to insert
|> cryptography easily
That is not true. eBones is available legally outside the US and
includes DES encryption.
|> (by the way, Kerberos V5 isn't legally
|> available at all outside the USA, bones or no bones, and the
|> rest of the world is stuck with an outdated V4 in the absence
|> of SESAME).
That isn't true either, unless you really meant to write, "by the way,
SOURCE CODE FOR Kerberos V5 isn't legally available..." At least two
different vendors of Kerberos V5 technology, OpenVision and CyberSafe,
sell Kerberos V5 products outside the US.
--
Jonathan Kamens | OpenVision Technologies, Inc. | jik@cam.ov.com
