Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!usc!snorkelwacker.mit.edu!stanford.edu!ATHENA.MIT.EDU!tytso
From: tytso@ATHENA.MIT.EDU (Theodore Ts'o)
Newsgroups: comp.protocols.kerberos
Subject: Re: Smartcards and version 5
Message-ID: <9104051816.AA05879@tsx-11.MIT.EDU>
Date: 5 Apr 91 18:16:21 GMT
References: <9104042225.AA07177@beta.lanl.gov>
Sender: news@shelby.stanford.edu (USENET News System)
Reply-To: tytso@athena.mit.edu
Organization: Internet-USENET Gateway at Stanford University
Lines: 15


   Date: Thu, 4 Apr 91 15:25:06 -0700
   From: jyg@beta.lanl.gov (John Greer)

   Someone from Security Dynamics claims the version 5 of Kerberos has "hooks"
   built in that allows the use of smartcard with Kerberos. Is this true?

Well, yes and no.  The protocol specification of Kerberos V5 makes it
possible that a smart card system could be integrated with Kerberos V5
authentication.  However, as far as I know, no one has written the code
to actually do this.  Certainly the MIT implementation (which will be
released to the public when it enters beta-test) has no "hooks" in the
code to support Security Dynamic's smartcards.  

						- Ted