Abstract:
This memo provides information for the Internet community. It does not specify an Internet standard of any kind. Distribution of this memo is unlimited. Copyright Notice Copyright (C) The Internet Society (1999). All Rights Reserved. This document describes two authentication mechanisms created by Sun Microsystems that are commonly used in conjunction with the ONC Remote Procedure Call (ONC RPC Version 2) protocol. WARNING The DH authentication as defined in Section 2 in this document refers to the authentication mechanism with flavor AUTH_DH currently implemented in ONC RPC. It uses the underlying Diffie-Hellman algorithm for key exchange. The DH authentication defined in this document is flawed due to the selection of a small prime for the BASE
Citations
|
1752
|
New directions in cryptography
– Diffie, Hellman
- 1976
|
|
556
|
Kerberos: An Authentication Service for Open Network Systems
– Steiner, Neuman, et al.
- 1988
|
|
182
|
Generic Security Service Application Programming Interface
– Linn
- 1993
|
|
68
|
XDR: External data representation standard
– Srinivasan
- 1995
|
|
58
|
The Kerberos Network Authentication Service (V5)", RFC
– Kohl, Neuman
|
|
49
|
Network Time Protocol Version 3
– Mills
- 1992
|
|
41
|
Firewalls and Internet Security
– Cheswick, Bellovin
- 1994
|
|
18
|
Section E.2.1: Kerberos Authentication and Authorization System
– Miller, Neuman, et al.
- 1987
|
|
18
|
The Kerberos Version 5 GSS-API Mechanism", RFC
– Linn
- 1964
|
|
12
|
Remote Procedure Call Protocol Version 2
– Srinivasan
- 1995
|
|
9
|
NFS Version 2 and Version 3 Security Issues and the NFS Protocol’s Use of RPCSEC_GSS and Kerberos V5", RFC 2623
– Eisler
- 1999
|
|
5
|
RPCSEC_GSS Protocol Specification", RFC 2203
– Eisler, Chiu, et al.
- 1997
|
|
3
|
Computation of Discrete Logarithms in Prime Fields
– Macchia, A, et al.
- 1991
|
