[kitten] Last Call: <draft-ietf-kitten-aes-cts-hmac-sha2-10.txt> (AES Encryption with HMAC-SHA2 for Kerberos 5) to Informational RFC
The IESG has received a request from the Common Authentication Technology
Next Generation WG (kitten) to consider the following document:
- 'AES Encryption with HMAC-SHA2 for Kerberos 5'
<draft-ietf-kitten-aes-cts-hmac-sha2-10.txt> as Informational RFC
The IESG plans to make a decision in the next few weeks, and solicits
final comments on this action. Please send substantive comments to the
[hidden email] mailing lists by 2016-07-20. Exceptionally, comments may be
sent to [hidden email] instead. In either case, please retain the
beginning of the Subject line to allow automated sorting.
This document specifies two encryption types and two corresponding
checksum types for Kerberos 5. The new types use AES in CTS mode
(CBC mode with ciphertext stealing) for confidentiality and HMAC with
a SHA-2 hash for integrity.