Skip to main content

AEAD Encryption Types for Kerberos 5

Document Type Expired Internet-Draft (individual)
Expired & archived
Author Luke Howard
Last updated 2023-07-25 (Latest revision 2023-01-15)
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This document updates RFC3961 to support encryption mechanisms that can authenticate associated data, such as Counter with CBC-MAC (CCM) and Galois/Counter Mode (GCM). These mechanisms are often more performant and need not expand the message as much as conventional modes.


Luke Howard

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)