[Spread-users] Kerberos and spread...
Theo Schlossnagle
jesus at omniti.com
Wed Sep 19 01:42:11 EDT 2001
On Wednesday, September 19, 2001, at 12:43 AM, Sean Chittenden wrote:
> Unless I'm mistaken, neither PAM or SecurID are network authentication
> protocols or provide any degree of encryption...
Off topic, but SecurID is a network authentication protocol as well. It
is not a protocol on the same level as Kerberos.
As I understand it SecurID uses encryption during the auth process.
There is a single master SecurID server and each client machines (node)
will contact it to authenticate and attempted connection from an outside
party (client). Each node has a negotiated secret with the SecurID
server. Those aren't much good for signing alone :-) So, I assume the
auth data is encrypted (and thus verified). SecurID provides one time
use passwords that expire (change) every minute.
--
Theo Schlossnagle
1024D/82844984/95FD 30F1 489E 4613 F22E 491A 7E88 364C 8284 4984
2047R/33131B65/71 F7 95 64 49 76 5D BA 3D 90 B9 9F BE 27 24 E7
More information about the Spread-users
mailing list