Public Key Cryptography for Cross-Realm Authentication in Kerberos
Tatyana Ryutov
Liberate
UC Irvine
Sun Microsystems
This document defines extensions to the Kerberos protocol specification [1] to provide a method for using public key cryptography to enable cross-realm authentication. The methods defined here specify the way in which message exchanges are to be used to transport cross-realm secret keys protected by encryption under public keys certified as belonging to KDCs.