[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [security-services] Groups - sstc-saml-schema-authn-context-kerberos-1.0.xsd uploaded
John, The words 'shared secret' are definitely applicable to Kerberos, but I am not sure what is meant by 'dynamic' or 'plaintext' in this context. All ciphers involve some form of plaintext and ciphertext, so what is dynamic about the plaintext used during Kerberos authentication ? Cheers, Tim. -----Original Message----- From: John Kemp [mailto:john.kemp@nokia.com] Sent: 07 July 2004 14:35 To: Tim Alsop Cc: security-services@lists.oasis-open.org Subject: Re: [security-services] Groups - sstc-saml-schema-authn-context-kerberos-1.0.xsd uploaded Hi Tim, ext Tim Alsop wrote: >It is not clear to me why references are made to challenge response - >can you explain this element and how it would be used with Kerberos >authentication ? > > > I had modelled the Kerberos protocol as a challenge-response using a shared secret (<SharedSecretChallengeResponse>), but I think this is actually incorrect, and it should be modelled as <SharedSecretDynamicPlaintext>. Thoughts? Cheers, - JohnK
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]