[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: "Identity Representation for RSVP" question

To: "'Hannes.Tschofenig@mchp.siemens.de'" <Hannes.Tschofenig@mchp.siemens.de>, rap@ops.ietf.org
Subject: RE: "Identity Representation for RSVP" question
From: "Hess, Rodney" <rodney.hess@intel.com>
Date: Wed, 18 Jul 2001 12:51:10 -0700

Hey, Hannes,

The statement you high lighted from Section 6.3 is in error.  Sending the
Kerberos ticket to the KDC is unnecessary to obtain the session key as the
ticket already contains the key.  This will be fixed in the next draft.

Rodney Hess
rodney.hess@intel.com


-----Original Message-----
From: Hannes Tschofenig [mailto:Hannes.Tschofenig@mchp.siemens.de]
Sent: Friday, June 29, 2001 3:01 AM
To: rap@ops.ietf.org
Subject: "Identity Representation for RSVP" question


hi

in section 6.3. of <draft-ietf-rap-rsvp-better-identity-00.txt> the
verification procedure of the user credentials are explained:

"Kerberos: Send the Kerberos ticket to the KDC to obtain the session key.
Using the session key authenticate the user.".

why should the router/pdp send the ticket to the kdc?

ciao
hannes

Prev by Date: I-D ACTION:draft-ietf-rap-feedback-frwk-00.txt
Next by Date: RE: Question about RFC 2752
Prev by thread: "Identity Representation for RSVP" question
Next by thread: Question about RFC 2752
Index(es):
- Date
- Thread