OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [security-services] Groups - sstc-saml-schema-authn-context-kerberos-1.0.xsd uploaded


The words 'shared secret' are definitely applicable to Kerberos, but I
am not sure what is meant by 'dynamic' or 'plaintext' in this context.
All ciphers involve some form of plaintext and ciphertext, so what is
dynamic about the plaintext used during Kerberos authentication ?


-----Original Message-----
From: John Kemp [mailto:john.kemp@nokia.com] 
Sent: 07 July 2004 14:35
To: Tim Alsop
Cc: security-services@lists.oasis-open.org
Subject: Re: [security-services] Groups -
sstc-saml-schema-authn-context-kerberos-1.0.xsd uploaded

Hi Tim,

ext Tim Alsop wrote:

>It is not clear to me why references are made to challenge response -
>can you explain this element and how it would be used with Kerberos
>authentication ?
I had modelled the Kerberos protocol as a challenge-response using a 
shared secret (<SharedSecretChallengeResponse>), but I think this is 
actually incorrect, and it should be modelled as 



- JohnK

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]