RFC 5868
Problem Statement on the Cross-Realm Operation of Kerberos, May 2010
- File formats:
- Status:
- INFORMATIONAL
- Authors:
- S. Sakane
K. Kamada
S. Zrelli
M. Ishiyama - Stream:
- IETF
- Source:
- krb-wg (sec)
Cite this RFC: TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC5868
Discuss this RFC: Send questions or comments to the mailing list kitten@ietf.org
Other actions: Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 5868
Abstract
This document provides background information regarding large-scale Kerberos deployments in the industrial sector, with the aim of identifying issues in the current Kerberos cross-realm authentication model as defined in RFC 4120.
This document describes some examples of actual large-scale industrial systems, and lists requirements and restrictions regarding authentication operations in such environments. It also identifies a number of requirements derived from the industrial automation field. Although they are found in the field of industrial automation, these requirements are general enough and are applicable to the problem of Kerberos cross-realm operations. This document is not an Internet Standards Track specification; it is published for informational purposes.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.