Kerberos V5 over TLS
This page contains the documents related to using Kerberos 5
over TLS, which is implemented by Shishi.
Please send feedback to
Kerberos TCP Expansion
Kerberos Starttls Bootstrapping
published, fixing nits.
published, adding a section on server certificate
published, rewritten to use a new PA-TLS type.
published, adds a PA-ENC-TIMESTAMP option.
published, addresses channel binding in krb5starttls.
published, removing the channel binding section.
published, fixing most PROTO writeup feedback.
published, with channel binding PA-DATA.
- The RFC-editor
- The IESG
draft-ietf-krb-wg-tcp-expansion-02.txt was announced,
attempts to resolve IETF LC issues.
- IETF Last Call of draft-ietf-krb-wg-tcp-expansion-01 ended.
IETF Last Call for draft-ietf-krb-wg-tcp-expansion-01
submitted. This document now only describes the TLS part
in the TCP expansion framework.
draft-ietf-krb-wg-tcp-expansion-01.txt was announced,
attempts to resolve WGLC issues.
issues were brought up, presumably a summary of the
WGLC issues for draft-ietf-krb-wg-tcp-expansion-00.
- Working Group Last Call of -00 ended.
Working Group Last Call of
draft-ietf-krb-wg-tcp-expansion-00 was initiated.
draft-ietf-krb-wg-tcp-expansion-00.txt was announced.
draft-josefsson-krb-tcp-expansion-00 was announced.
This document describes the TCP expansion framework
This work was sponsored by Simon Josefsson Datakonsult AB.
If you need commercial help with utilizing this technology, or
have a related project that you want help with, please feel free
to contact me. If you
find my work in this area useful, also please consider making a
donation. No amount is too small!