[openssl-users] [openssl-dev] Replacing RFC2712 (was Re: Kerberos)

Jeffrey Altman jaltman at secure-endpoints.com
Wed May 13 19:37:17 UTC 2015


On 5/13/2015 3:17 PM, Nico Williams wrote:
> Kerberos in particular supports PROT_READY.  There is no Kerberos IV GSS
> mechanism, FYI.  I'd never heard of GSS-SRP-6a; do you have a reference?

Nico,

Look for draft-burdis-cat-srp-sasl.  It was never standardized but I
believe there is an implementation in Cyrus/SASL.  This is the most
recent version I could find

 http://www.opensource.apple.com/source/passwordserver_sasl/passwordserver_sasl-159/cyrus_sasl/doc/draft-burdis-cat-srp-sasl-xx.txt

Jeffrey Altman


-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4589 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20150513/b9f1b954/attachment-0001.bin>


More information about the openssl-users mailing list