Sign in
Version 5.13.0, 2015-03-25
Report a bug

Kerberos Authorization Data Container Authenticated by Multiple MACs

Document type: Replaced Internet-Draft (kitten WG)
Document stream: IETF
Last updated: 2014-11-13 (latest revision 2014-10-03)
Intended RFC status: Proposed Standard
Other versions: (expired, archived): plain text, pdf, html

IETF State: Submitted to IESG for Publication
Document shepherd: Benjamin Kaduk
Shepherd Write-Up: Last changed 2014-10-06

IESG State: Replaced by draft-ietf-kitten-cammac
Responsible AD: Stephen Farrell
Send notices to:,

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found here:


Abstract: This document specifies a Kerberos Authorization Data container that supersedes AD-KDC-ISSUED. It allows for multiple Message Authentication Codes (MACs) or signatures to authenticate the contained Authorization Data elements. This document updates RFC 4120.


Simo Sorce <>
Tom Yu <>
Thomas Hardjono <>

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid)