On 2011-06-21 6:34 AM, Nico Williams wrote:
The GSS-API has been growing extensions to deal with these situations
by exposing more information to the application. There's also some
extensions by which to specify policies/profiles to apply.
Creating a whole *new* API to layer above the GSS-API would be OK IFF
the new API were effectively a simplified profile of the GSS-API.
The GSS-API has Kerberos implicitly baked into it - symmetric
encryption, central trusted authority, function call oriented rather
than message oriented.
_______________________________________________
cryptography mailing list
[email protected]
http://lists.randombit.net/mailman/listinfo/cryptography
