AES Encryption with HMAC-SHA2 for Kerberos 5
This document specifies two encryption types and two corresponding checksum types for Kerberos 5. The new types use AES in CBC mode with ciphertext stealing for confidentiality and HMAC with a SHA-2 hash for integrity.