RFC 4556
Public Key Cryptography for Initial Authentication in Kerberos (PKINIT), June 2006
- File formats:
- Status:
- PROPOSED STANDARD
- Updated by:
- RFC 6112, RFC 8062, RFC 8636
- Authors:
- L. Zhu
B. Tung - Stream:
- IETF
- Source:
- krb-wg (sec)
Cite this RFC: TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC4556
Discuss this RFC: Send questions or comments to the mailing list kitten@ietf.org
Other actions: View Errata | Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 4556
Abstract
This document describes protocol extensions (hereafter called PKINIT) to the Kerberos protocol specification. These extensions provide a method for integrating public key cryptography into the initial authentication exchange, by using asymmetric-key signature and/or encryption algorithms in pre-authentication data fields. [STANDARDS-TRACK]
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.