Kerberos Clock Synchronization
draft-weber-krb-wg-kerberos-clock-synchronization-01
Document | Type |
Expired Internet-Draft
(individual)
Expired & archived
|
|
---|---|---|---|
Author | Joel N. Weber | ||
Last updated | 2003-06-23 | ||
RFC stream | (None) | ||
Intended RFC status | (None) | ||
Formats | |||
Stream | Stream state | (No stream defined) | |
Consensus boilerplate | Unknown | ||
RFC Editor Note | (None) | ||
IESG | IESG state | Expired | |
Telechat date | (None) | ||
Responsible AD | (None) | ||
Send notices to | (None) |
This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:
Abstract
This document discusses the security vulnerabilities that can exist in the Kerberos protocol and related protocols when clock synchronization is insecure, alternative methods that can be used to reduce or eliminate dependency on secure clock synchronization, and sanity checks which can be used when setting the system clock using an insecure time source as a reference in order to remove security vulnerabilities.
Authors
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)