Javascript disabled? Like other modern websites, the IETF Datatracker relies on Javascript. Please enable Javascript for full functionality.

Kerberos Cryptosystem Negotiation Extension
RFC 4537

Yes

(Sam Hartman)

No Objection

(Alex Zinin)

(Bert Wijnen)

(Bill Fenner)

(Brian Carpenter)

(David Kessens)

(Russ Housley)

(Scott Hollenbeck)

(Ted Hardie)

Note: This ballot was opened for revision 04 and is now closed.

(Sam Hartman; former steering group member) Yes

Yes ()

(Alex Zinin; former steering group member) No Objection

No Objection ()

(Bert Wijnen; former steering group member) No Objection

No Objection ()

(Bill Fenner; former steering group member) No Objection

No Objection ()

(Brian Carpenter; former steering group member) No Objection

No Objection (2006-01-30)

KDC should be defined where first used (line 1 of the Introduction).

At the end of section 3:
   The server MAY ignore the preference order indicated by the client.
   The policy by which the client or the server chooses an enctype
   (i.e., how the preference order for the supported enctypes is
   selected) is a local matter.

Would it be useful to observe that this would actually allow
a local decision to prefer weaker security than chosen by the KDC?

(David Kessens; former steering group member) No Objection

No Objection ()

(Russ Housley; former steering group member) No Objection

No Objection (2006-01-30)

  In the Abstract:
  s/Kerberos protocol/Kerberos protocol as defined in RFC 4120/

(Scott Hollenbeck; former steering group member) No Objection

No Objection ()

(Ted Hardie; former steering group member) No Objection

No Objection ()

Kerberos Cryptosystem Negotiation Extension RFC 4537

Kerberos Cryptosystem Negotiation Extension
RFC 4537