Tech Insider					     Technology and Trends

		      Kerberos Mailing List Archives

From wesommer@ATHENA.MIT.EDU  Mon Aug 11 21:13:25 1986
To: bcn
Cc: kerberos
Subject: How am I supposed to cleanly get at the session key?
Date: Mon, 11 Aug 86 21:09:53 -0500
From: Bill Sommerfeld <wesommer@ATHENA.MIT.EDU>

To plug a lighter-weight authentication into the Sun RPC library
(using a method similar to that proposed in the Sun USENIX paper on
secure RPC, with Kerberos authenticators used for the initial exchange
of session keys), I need to get at a few things "internal" to

 - The timestamp used inside the ticket (since there does not
seem to be any library routine for mutual authentication; the server
will ship back the timestamp-1 sealed in the session key and a 32-bit
identifier).  "Timestamp+1" is not used, since that could be used as a
verifier on another procedure call.

 - The session key contained in the authenticator.. There
doesn't seem to be any way to get that other than to use "retrieve"
again.  This will be used to encrypt successive timestamps attached to
each RPC request.

						- Bill

			        About USENET

USENET (Users’ Network) was a bulletin board shared among many computer
systems around the world. USENET was a logical network, sitting on top
of several physical networks, among them UUCP, BLICN, BERKNET, X.25, and
the ARPANET. Sites on USENET included many universities, private companies
and research organizations. See USENET Archives.

		       SCO Files Lawsuit Against IBM

March 7, 2003 - The SCO Group filed legal action against IBM in the State 
Court of Utah for trade secrets misappropriation, tortious interference, 
unfair competition and breach of contract. The complaint alleges that IBM 
made concentrated efforts to improperly destroy the economic value of 
UNIX, particularly UNIX on Intel, to benefit IBM's Linux services 
business. See SCO v IBM.

The materials and information included in this website may only be used
for purposes such as criticism, review, private study, scholarship, or

Electronic mail:			       WorldWideWeb: