[Spread-users] Kerberos and spread...

Theo Schlossnagle jesus at omniti.com
Wed Sep 19 01:42:11 EDT 2001

On Wednesday, September 19, 2001, at 12:43  AM, Sean Chittenden wrote:
> Unless I'm mistaken, neither PAM or SecurID are network authentication
> protocols or provide any degree of encryption...

Off topic, but SecurID is a network authentication protocol as well.  It 
is not a protocol on the same level as Kerberos.

As I understand it SecurID uses encryption during the auth process.  
There is a single master SecurID server and each client machines (node) 
will contact it to authenticate and attempted connection from an outside 
party (client).  Each node has a negotiated secret with the SecurID 
server.  Those aren't much good for signing alone :-) So, I assume the 
auth data is encrypted (and thus verified).  SecurID provides one time 
use passwords that expire (change) every minute.

Theo Schlossnagle
1024D/82844984/95FD 30F1 489E 4613 F22E  491A 7E88 364C 8284 4984
2047R/33131B65/71 F7 95 64 49 76 5D BA  3D 90 B9 9F BE 27 24 E7

More information about the Spread-users mailing list