datatracker.ietf.org
Sign In
Accounts
New Account
Working Groups
Applications
appsawg — Applications Area Working Group
core — Constrained RESTful Environments
eai — Email Address Internationalization
httpbis — Hypertext Transfer Protocol Bis
hybi — BiDirectional or Server-Initiated HTTP
iri — Internationalized Resource Identifiers
marf — Messaging Abuse Reporting Format
paws — Protocol to Access WS database
precis — Preparation and Comparison of Internationalized Strings
repute — Reputation Services
sieve — Sieve Mail Filtering Language
spfbis — SPF Update
urnbis — Uniform Resource Names, Revised
vcarddav — vCard and CardDAV
websec — Web Security
weirds — Web Extensible Internet Registration Data Service
Internet
6lowpan — IPv6 over Low power WPAN
6man — IPv6 Maintenance
ancp — Access Node Control Protocol
csi — Cga & Send maIntenance
dhc — Dynamic Host Configuration
dmm — Distributed Mobility Management
dnsext — DNS Extensions
hip — Host Identity Protocol
homenet — Home Networking
intarea — Internet Area Working Group
l2tpext — Layer Two Tunneling Protocol Extensions
lisp — Locator/ID Separation Protocol
lwig — Light-Weight Implementation Guidance
mif — Multiple Interfaces
mip4 — Mobility for IPv4
multimob — Multicast Mobility
netext — Network-Based Mobility Extensions
ntp — Network Time Protocol
pcp — Port Control Protocol
pppext — Point-to-Point Protocol Extensions
savi — Source Address Validation Improvements
softwire — Softwires
sunset4 — sunset4
tictoc — Timing over IP Connection and Transfer of Clock
trill — Transparent Interconnection of Lots of Links
Ops & Mgmt
6renum — IPv6 Site Renumbering
adslmib — ADSL MIB
armd — Address Resolution for Massive numbers of hosts in the Data center
bmwg — Benchmarking Methodology
dime — Diameter Maintenance and Extensions
dnsop — Domain Name System Operations
eman — Energy Management
grow — Global Routing Operations
ipfix — IP Flow Information Export
mboned — MBONE Deployment
netconf — Network Configuration
netmod — NETCONF Data Modeling Language
opsawg — Operations and Management Area Working Group
opsec — Operational Security Capabilities for IP Network Infrastructure
radext — RADIUS EXTensions
v6ops — IPv6 Operations
RAI
atoca — Authority-to-Citizen Alert
avtcore — Audio/Video Transport Core Maintenance
avtext — Audio/Video Transport Extensions
bfcpbis — Binary Floor Control Protocol Bis
bliss — Basic Level of Interoperability for SIP Services
clue — ControLling mUltiple streams for tElepresence
codec — Internet Wideband Audio Codec
cuss — Call Control UUI Service for SIP
dispatch — Dispatch
drinks — Data for Reachability of Inter/tra-NetworK SIP
ecrit — Emergency Context Resolution with Internet Technologies
geopriv — Geographic Location/Privacy
insipid — INtermediary-safe SIP session ID
mediactrl — Media Server Control
mmusic — Multiparty Multimedia Session Control
p2psip — Peer-to-Peer Session Initiation Protocol
payload — Audio/Video Transport Payloads
rtcweb — Real-Time Communication in WEB-browsers
salud — Sip ALerting for User Devices
simple — SIP for Instant Messaging and Presence Leveraging Extensions
sipclf — SIP Common Log Format
sipcore — Session Initiation Protocol Core
siprec — SIP Recording
soc — SIP Overload Control
speechsc — Speech Services Control
vipr — Verification Involving PSTN Reachability
xmpp — Extensible Messaging and Presence Protocol
xrblock — Metric Blocks for use with RTCP's Extended Report Framework
Routing
bfd — Bidirectional Forwarding Detection
ccamp — Common Control and Measurement Plane
forces — Forwarding and Control Element Separation
idr — Inter-Domain Routing
isis — IS-IS for IP Internets
karp — Keying and Authentication for Routing Protocols
l2vpn — Layer 2 Virtual Private Networks
l3vpn — Layer 3 Virtual Private Networks
manet — Mobile Ad-hoc Networks
mpls — Multiprotocol Label Switching
nvo3 — Network Virtualization Overlays
ospf — Open Shortest Path First IGP
pce — Path Computation Element
pim — Protocol Independent Multicast
pwe3 — Pseudowire Emulation Edge to Edge
roll — Routing Over Low power and Lossy networks
rtgwg — Routing Area Working Group
sidr — Secure Inter-Domain Routing
Security
abfab — Application Bridging for Federated Access Beyond web
dane — DNS-based Authentication of Named Entities
emu — EAP Method Update
hokey — Handover Keying
ipsecme — IP Security Maintenance and Extensions
jose — Javascript Object Signing and Encryption
kitten — Common Authentication Technology Next Generation
krb-wg — Kerberos
mile — Managed Incident Lightweight Exchange
nea — Network Endpoint Assessment
oauth — Web Authorization Protocol
pkix — Public-Key Infrastructure (X.509)
tls — Transport Layer Security
Transport
alto — Application-Layer Traffic Optimization
behave — Behavior Engineering for Hindrance Avoidance
cdni — Content Delivery Networks Interconnection
conex — Congestion Exposure
dccp — Datagram Congestion Control Protocol
decade — Decoupled Application Data Enroute
fecframe — FEC Framework
ippm — IP Performance Metrics
ledbat — Low Extra Delay Background Transport
mptcp — Multipath TCP
nfsv4 — Network File System Version 4
pcn — Congestion and Pre-Congestion Notification
ppsp — Peer to Peer Streaming Protocol
rmt — Reliable Multicast Transport
storm — STORage Maintenance
tcpm — TCP Maintenance and Minor Extensions
tsvwg — Transport Area Working Group
Active WGs
Concluded WGs
Non-WG Lists
Drafts & RFCs
Search
Submit a draft
Meetings
Agenda
Materials
Past Proceedings
Upcoming
Other Documents
IPR Disclosures
Liaison Statements
IESG Agenda
Related Sites
Main IETF site
IETF tools
IAB
RFC Editor
IASA/IAOC/Trust
IANA
IRTF
Version 4.02, 2012-04-26
Report a bug
Kerberos (krb-wg)
Documents
|
Charter
|
History
|
List Archive »
|
Tools WG Page »
Document
Title
Date
Status
ipr
Area Director
Active Internet-Drafts
draft-ietf-krb-wg-camellia-cts-01
Camellia Encryption for Kerberos 5
2012-03-08
I-D Exists
WG Consensus: Waiting for Write-Up
draft-ietf-krb-wg-cammac-01
Container Authenticated by Multiple MACs
2012-02-09
I-D Exists
WG Document
draft-ietf-krb-wg-des-die-die-die-04
Deprecate DES, RC4-HMAC-EXP, and other weak cryptographic algorithms in Kerberos
2012-02-27
RFC Ed Queue
(for 20 days)
RFC Editor State:
EDIT
Submitted to IESG for Publication
Stephen Farrell
draft-ietf-krb-wg-kdc-model-11
An information model for Kerberos version 5
2012-03-11
AD Evaluation::Revised ID Needed
(for 42 days)
WG Document
Stephen Farrell
draft-ietf-krb-wg-kerberos-referrals-14
Kerberos Principal Name Canonicalization and KDC-Generated Cross-Realm Referrals
2012-03-12
I-D Exists
WG Document
draft-ietf-krb-wg-pad-01
POSIX Authorization Data
2012-02-09
I-D Exists
WG Document
draft-ietf-krb-wg-pkinit-alg-agility-06
PKINIT Algorithm Agility
2012-03-08
I-D Exists
WG Consensus: Waiting for Write-Up
draft-sakane-dhc-dhcpv6-kdc-option-14
Kerberos Options for DHCPv6
2012-03-08
Waiting for AD Go-Ahead::Revised ID Needed
(for 42 days)
Submitted to IESG for Publication
Stephen Farrell
RFCs
RFC 3961
(
draft-ietf-krb-wg-crypto
)
Encryption and Checksum Specifications for Kerberos 5
2005-02
RFC 3961 (Proposed Standard)
Errata
Russ Housley
RFC 3962
(
draft-raeburn-krb-rijndael-krb
)
Advanced Encryption Standard (AES) Encryption for Kerberos 5
2005-02
RFC 3962 (Proposed Standard)
Russ Housley
RFC 4120
(
draft-ietf-krb-wg-kerberos-clarifications
)
The Kerberos Network Authentication Service (V5)
2005-07
RFC 4120 (Proposed Standard)
Updated by
RFC 4537
,
RFC 5021
,
RFC 5896
,
RFC 6111
,
RFC 6112
,
RFC 6113
Russ Housley
RFC 4121
(
draft-ietf-krb-wg-gssapi-cfx
)
The Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API) Mechanism: Version 2
2005-07
RFC 4121 (Proposed Standard)
Updated by
RFC 6112
,
RFC 6542
Russ Housley
RFC 4537
(
draft-zhu-kerb-enctype-nego
)
Kerberos Cryptosystem Negotiation Extension
2006-06
RFC 4537 (Proposed Standard)
Sam Hartman
RFC 4556
(
draft-ietf-cat-kerberos-pk-init
)
Public Key Cryptography for Initial Authentication in Kerberos (PKINIT)
2006-06
RFC 4556 (Proposed Standard)
Updated by
RFC 6112
Sam Hartman
RFC 4557
(
draft-ietf-krb-wg-ocsp-for-pkinit
)
Online Certificate Status Protocol (OCSP) Support for Public Key Cryptography for Initial Authentication in Kerberos (PKINIT)
2006-06
RFC 4557 (Proposed Standard)
Errata
Sam Hartman
RFC 5021
(
draft-ietf-krb-wg-tcp-expansion
)
Extended Kerberos Version 5 Key Distribution Center (KDC) Exchanges over TCP
2007-08
RFC 5021 (Proposed Standard)
Sam Hartman
RFC 5349
(
draft-zhu-pkinit-ecc
)
Elliptic Curve Cryptography (ECC) Support for Public Key Cryptography for Initial Authentication in Kerberos (PKINIT)
2008-09
RFC 5349 (Informational)
Tim Polk
RFC 5868
(
draft-ietf-krb-wg-cross-problem-statement
)
Problem Statement on the Cross-Realm Operation of Kerberos
2010-05
RFC 5868 (Informational)
Tim Polk
RFC 6111
(
draft-ietf-krb-wg-naming
)
Additional Kerberos Naming Constraints
2011-04
RFC 6111 (Proposed Standard)
Tim Polk
RFC 6112
(
draft-ietf-krb-wg-anon
)
Anonymity Support for Kerberos
2011-04
RFC 6112 (Proposed Standard)
Tim Polk
RFC 6113
(
draft-ietf-krb-wg-preauth-framework
)
A Generalized Framework for Kerberos Pre-Authentication
2011-04
RFC 6113 (Proposed Standard)
Tim Polk
RFC 6251
(
draft-josefsson-kerberos5-starttls
)
Using Kerberos Version 5 over the Transport Layer Security (TLS) Protocol
2011-05
RFC 6251 (Informational)
Tim Polk
RFC 6448
(
draft-ietf-krb-wg-clear-text-cred
)
The Unencrypted Form of Kerberos 5 KRB-CRED Message
2011-11
RFC 6448 (Proposed Standard)
Stephen Farrell
RFC 6542
(
draft-ietf-krb-wg-gss-cb-hash-agility
)
Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API) Channel Binding Hash Agility
2012-03
RFC 6542 (Proposed Standard)
Stephen Farrell
RFC 6560
(
draft-ietf-krb-wg-otp-preauth
)
One-Time Password (OTP) Pre-Authentication
2012-04
RFC 6560 (Proposed Standard)
Stephen Farrell
Related Documents
Title
Date
Status
ipr
Area Director
Active Internet-Drafts
draft-perez-krb-wg-gss-preauth-01
GSS-API pre-authentication for Kerberos
2012-01-04
I-D Exists
Call For Adoption By WG Issued
datatracker.ietf.org
