On 10/6/2012 10:24 AM, Troy Benjegerdes wrote: > If al...@school.edu knows b...@commercial.com, and they have lunch and > exchange > business cards, and both of them trust the administrators of school.edu and > commercial.com, why in the world do the admins of school.edu and > commercial.com > even have to get involved for Alice and Bob to (securely) share files with > OpenAFS?
The reason that the admins of school.edu and commercial.edu need to be involved is that the cells are the property of school.edu and commercial.edu and each organization has its own terms of service and security policies. Adding entries to the Protection Database is something that must be authorized by the administrator. It has nothing to do with cross-realm Kerberos. In fact, the reason that rxgk is based on GSS-API is to permit non-Kerberos solutions to the authentication problem to be deployed. The difficulty of automating the establishment of Kerberos realm key exchange is really besides the point. Once anonymous PKINIT is implemented in the KDCs, establishing a protocol to perform one-way automated key exchange between realms is really quite trivial. Jeffrey Altman
signature.asc
Description: OpenPGP digital signature
