A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Common Authentication Technology Next Generation of the IETF.
Title : Public Key Cryptography for Initial Authentication in Kerberos (PKINIT) Freshness Extension
Authors : Michiko Short
Filename : draft-ietf-kitten-pkinit-freshness-04.txt
Pages : 8
Date : 2016-03-21
This document describes how to further extend the Public Key
Cryptography for Initial Authentication in Kerberos (PKINIT)
extension [RFC4556] to exchange an opaque data blob that a KDC can
validate to ensure that the client is currently in possession of the
private key during a PKINIT AS exchange.