Re: Access Authorization

Marc VanHeyningen ([email protected])
Fri, 17 Sep 1993 03:17:49 -0500


Thus wrote:
>Steve Heaney writes:
>> I havn't followed the discussion in great detail and I know nothing about
>> the issues of authorization. However, I know I would definitely feel better
>
>> about any solution that used schemes (like Kerberos) that were already in
>> (wide) use. The advantages should be obvious.
>
>Is Kerberos really in wide use? If so, where? (I have no idea...)
>
>Marc
>

Kerberos V4 is certainly in wide use in lots of places, even here.
Kerberos V5, however, is needed to be even marginally tolerable for
WWW applications (V4 requires n^2 secret keys where n is the number of
administrative domains, and is thus not scalable.) Kerberos in
general is, IMHO, not sufficiently scalable for WWW purposes for
reasons I think I've blathered about before enough.

- Marc

--
Marc VanHeyningen  [email protected]  MIME, RIPEM & HTTP spoken here