RFC 5349 ECC Support for PKINIT September

نویسندگان

L. Zhu

K. Jaganathan

K. Lauter

چکیده

Status of This Memo This memo provides information for the Internet community. It does not specify an Internet standard of any kind. Distribution of this memo is unlimited. Abstract This document describes the use of Elliptic Curve certificates, Elliptic Curve signature schemes and Elliptic Curve Diffie-Hellman (ECDH) key agreement within the framework of PKINIT-the Kerberos Version 5 extension that provides for the use of public key cryptography.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Public Key Cryptography for Initial Authentication in Kerberos (PKINIT) Freshness Extension

This document describes how to further extend the Public Key Cryptography for Initial Authentication in Kerberos (PKINIT) extension [RFC4556] to exchange an opaque data blob which a KDC can validate to ensure that the client is currently in possession of the private key during a PKInit AS exchange.

متن کامل

Elliptic Curve Groups modulo a Prime (ECP Groups) for IKE and IKEv2

This document describes three Elliptic Curve Cryptography (ECC) groups for use in the Internet Key Exchange (IKE) and Internet Key Exchange version 2 (IKEv2) protocols in addition to previously defined groups. These groups are based on modular arithmetic rather than binary arithmetic. These groups are defined to align IKE and IKEv2 with other ECC implementations and standards, particularly NIST...

متن کامل

RFC 5639 ECC Brainpool Standard Curves & Curve Generation March

This memo proposes several elliptic curve domain parameters over finite prime fields for use in cryptographic applications. The domain parameters are consistent with the relevant international standards, and can be used in X.509 certificates and certificate revocation lists (CRLs), for Internet Key Exchange (IKE), Transport Layer Security (TLS), XML signatures, and all applications or protocols...

متن کامل

RADIUS (Remote Authentication Dial In User Service) Support For Extensible Authentication Protocol (EAP)

This document defines Remote Authentication Dial In User Service (RADIUS) support for the Extensible Authentication Protocol (EAP), an authentication framework which supports multiple authentication mechanisms. In the proposed scheme, the Network Access Server (NAS) forwards EAP packets to and from the RADIUS server, encapsulated within EAP-Message attributes. This has the advantage of allowing...

متن کامل

AES-CCM Elliptic Curve Cryptography (ECC) Cipher Suites for TLS

This memo describes the use of the Advanced Encryption Standard (AES) in the Counter and CBC-MAC Mode (CCM) of operation within Transport Layer Security (TLS) to provide confidentiality and data-origin authentication. The AES-CCM algorithm is amenable to compact implementations, making it suitable for constrained environments, while at the same time providing a high level of security. The ciphe...

متن کامل

ذخیره در منابع من

ذخیره در منابع من قبلا به منابع من ذحیره شده

{@ msg_add @}

با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

عنوان ژورنال:

دوره شماره

صفحات -

تاریخ انتشار 2008

RFC 5349 ECC Support for PKINIT September

نویسندگان

چکیده

منابع مشابه

Public Key Cryptography for Initial Authentication in Kerberos (PKINIT) Freshness Extension

Elliptic Curve Groups modulo a Prime (ECP Groups) for IKE and IKEv2

RFC 5639 ECC Brainpool Standard Curves & Curve Generation March

RADIUS (Remote Authentication Dial In User Service) Support For Extensible Authentication Protocol (EAP)

AES-CCM Elliptic Curve Cryptography (ECC) Cipher Suites for TLS

عنوان ژورنال:

اشتراک گذاری