|
DataMuseum.dkPresents historical artifacts from the history of: DKUUG/EUUG Conference tapes |
This is an automatic "excavation" of a thematic subset of
See our Wiki for more about DKUUG/EUUG Conference tapes Excavated with: AutoArchaeologist - Free & Open Source Software. |
top - metrics - downloadIndex: T U
Length: 19852 (0x4d8c)
Types: TextFile
Notes: Uncompressed file
└─⟦4f9d7c866⟧ Bits:30007245 EUUGD6: Sikkerheds distributionen
└─⟦3205e8707⟧ »./papers/Kerberos/unix-security.PS.Z«
└─⟦this⟧
%!PS-Adobe-1.0
%%Creator: bach:steiner (Jennifer Steiner,Jen,E40-318,0169,)
%%Title: stdin (ditroff)
%%CreationDate: Fri Jul 1 09:25:20 1988
%%EndComments
% lib/psdit.pro -- prolog for psdit (ditroff) files
% Copyright (c) 1984, 1985 Adobe Systems Incorporated. All Rights Reserved.
% last edit: shore Sat Nov 23 20:28:03 1985
% RCSID: $Header: psdit.pro,v 2.1 85/11/24 12:19:43 shore Rel $
/$DITroff 140 dict def $DITroff begin
/fontnum 1 def /fontsize 10 def /fontheight 10 def /fontslant 0 def
/xi {0 72 11 mul translate 72 resolution div dup neg scale 0 0 moveto
/fontnum 1 def /fontsize 10 def /fontheight 10 def /fontslant 0 def F
/pagesave save def}def
/PB{save /psv exch def currentpoint translate
resolution 72 div dup neg scale 0 0 moveto}def
/PE{psv restore}def
/arctoobig 90 def /arctoosmall .05 def
/m1 matrix def /m2 matrix def /m3 matrix def /oldmat matrix def
/tan{dup sin exch cos div}def
/point{resolution 72 div mul}def
/dround {transform round exch round exch itransform}def
/xT{/devname exch def}def
/xr{/mh exch def /my exch def /resolution exch def}def
/xp{}def
/xs{docsave restore end}def
/xt{}def
/xf{/fontname exch def /slotno exch def fontnames slotno get fontname eq not
{fonts slotno fontname findfont put fontnames slotno fontname put}if}def
/xH{/fontheight exch def F}def
/xS{/fontslant exch def F}def
/s{/fontsize exch def /fontheight fontsize def F}def
/f{/fontnum exch def F}def
/F{fontheight 0 le {/fontheight fontsize def}if
fonts fontnum get fontsize point 0 0 fontheight point neg 0 0 m1 astore
fontslant 0 ne{1 0 fontslant tan 1 0 0 m2 astore m3 concatmatrix}if
makefont setfont .04 fontsize point mul 0 dround pop setlinewidth}def
/X{exch currentpoint exch pop moveto show}def
/N{3 1 roll moveto show}def
/Y{exch currentpoint pop exch moveto show}def
/S{show}def
/ditpush{}def/ditpop{}def
/AX{3 -1 roll currentpoint exch pop moveto 0 exch ashow}def
/AN{4 2 roll moveto 0 exch ashow}def
/AY{3 -1 roll currentpoint pop exch moveto 0 exch ashow}def
/AS{0 exch ashow}def
/MX{currentpoint exch pop moveto}def
/MY{currentpoint pop exch moveto}def
/MXY{moveto}def
/cb{pop}def % action on unknown char -- nothing for now
/n{}def/w{}def
/p{pop showpage pagesave restore /pagesave save def}def
/abspoint{currentpoint exch pop add exch currentpoint pop add exch}def
/distance{dup mul exch dup mul add sqrt}def
/dstroke{currentpoint stroke moveto}def
/Dl{2 copy gsave rlineto stroke grestore rmoveto}def
/arcellipse{/diamv exch def /diamh exch def oldmat currentmatrix pop
currentpoint translate 1 diamv diamh div scale /rad diamh 2 div def
currentpoint exch rad add exch rad -180 180 arc oldmat setmatrix}def
/Dc{dup arcellipse dstroke}def
/De{arcellipse dstroke}def
/Da{/endv exch def /endh exch def /centerv exch def /centerh exch def
/cradius centerv centerv mul centerh centerh mul add sqrt def
/eradius endv endv mul endh endh mul add sqrt def
/endang endv endh atan def
/startang centerv neg centerh neg atan def
/sweep startang endang sub dup 0 lt{360 add}if def
sweep arctoobig gt
{/midang startang sweep 2 div sub def /midrad cradius eradius add 2 div def
/midh midang cos midrad mul def /midv midang sin midrad mul def
midh neg midv neg endh endv centerh centerv midh midv Da
currentpoint moveto Da}
{sweep arctoosmall ge
{/controldelt 1 sweep 2 div cos sub 3 sweep 2 div sin mul div 4 mul def
centerv neg controldelt mul centerh controldelt mul
endv neg controldelt mul centerh add endh add
endh controldelt mul centerv add endv add
centerh endh add centerv endv add rcurveto dstroke}
{centerh endh add centerv endv add rlineto dstroke}ifelse}ifelse}def
/Barray 200 array def % 200 values in a wiggle
/D~{mark}def
/D~~{counttomark Barray exch 0 exch getinterval astore /Bcontrol exch def pop
/Blen Bcontrol length def Blen 4 ge Blen 2 mod 0 eq and
{Bcontrol 0 get Bcontrol 1 get abspoint /Ycont exch def /Xcont exch def
Bcontrol 0 2 copy get 2 mul put Bcontrol 1 2 copy get 2 mul put
Bcontrol Blen 2 sub 2 copy get 2 mul put
Bcontrol Blen 1 sub 2 copy get 2 mul put
/Ybi /Xbi currentpoint 3 1 roll def def 0 2 Blen 4 sub
{/i exch def
Bcontrol i get 3 div Bcontrol i 1 add get 3 div
Bcontrol i get 3 mul Bcontrol i 2 add get add 6 div
Bcontrol i 1 add get 3 mul Bcontrol i 3 add get add 6 div
/Xbi Xcont Bcontrol i 2 add get 2 div add def
/Ybi Ycont Bcontrol i 3 add get 2 div add def
/Xcont Xcont Bcontrol i 2 add get add def
/Ycont Ycont Bcontrol i 3 add get add def
Xbi currentpoint pop sub Ybi currentpoint exch pop sub rcurveto
}for dstroke}if}def
end
/ditstart{$DITroff begin
/nfonts 60 def % NFONTS makedev/ditroff dependent!
/fonts[nfonts{0}repeat]def
/fontnames[nfonts{()}repeat]def
/docsave save def
}def
% character outcalls
/oc {/pswid exch def /cc exch def /name exch def
/ditwid pswid fontsize mul resolution mul 72000 div def
/ditsiz fontsize resolution mul 72 div def
ocprocs name known{ocprocs name get exec}{name cb}
ifelse}def
/fractm [.65 0 0 .6 0 0] def
/fraction
{/fden exch def /fnum exch def gsave /cf currentfont def
cf fractm makefont setfont 0 .3 dm 2 copy neg rmoveto
fnum show rmoveto currentfont cf setfont(\244)show setfont fden show
grestore ditwid 0 rmoveto} def
/oce {grestore ditwid 0 rmoveto}def
/dm {ditsiz mul}def
/ocprocs 50 dict def ocprocs begin
(14){(1)(4)fraction}def
(12){(1)(2)fraction}def
(34){(3)(4)fraction}def
(13){(1)(3)fraction}def
(23){(2)(3)fraction}def
(18){(1)(8)fraction}def
(38){(3)(8)fraction}def
(58){(5)(8)fraction}def
(78){(7)(8)fraction}def
(sr){gsave 0 .06 dm rmoveto(\326)show oce}def
(is){gsave 0 .15 dm rmoveto(\362)show oce}def
(->){gsave 0 .02 dm rmoveto(\256)show oce}def
(<-){gsave 0 .02 dm rmoveto(\254)show oce}def
(==){gsave 0 .05 dm rmoveto(\272)show oce}def
end
% an attempt at a PostScript FONT to implement ditroff special chars
% this will enable us to
% cache the little buggers
% generate faster, more compact PS out of psdit
% confuse everyone (including myself)!
50 dict dup begin
/FontType 3 def
/FontName /DIThacks def
/FontMatrix [.001 0 0 .001 0 0] def
/FontBBox [-260 -260 900 900] def% a lie but ...
/Encoding 256 array def
0 1 255{Encoding exch /.notdef put}for
Encoding
dup 8#040/space put %space
dup 8#110/rc put %right ceil
dup 8#111/lt put %left top curl
dup 8#112/bv put %bold vert
dup 8#113/lk put %left mid curl
dup 8#114/lb put %left bot curl
dup 8#115/rt put %right top curl
dup 8#116/rk put %right mid curl
dup 8#117/rb put %right bot curl
dup 8#120/rf put %right floor
dup 8#121/lf put %left floor
dup 8#122/lc put %left ceil
dup 8#140/sq put %square
dup 8#141/bx put %box
dup 8#142/ci put %circle
dup 8#143/br put %box rule
dup 8#144/rn put %root extender
dup 8#145/vr put %vertical rule
dup 8#146/ob put %outline bullet
dup 8#147/bu put %bullet
dup 8#150/ru put %rule
dup 8#151/ul put %underline
pop
/DITfd 100 dict def
/BuildChar{0 begin
/cc exch def /fd exch def
/charname fd /Encoding get cc get def
/charwid fd /Metrics get charname get def
/charproc fd /CharProcs get charname get def
charwid 0 fd /FontBBox get aload pop setcachedevice
2 setlinejoin 40 setlinewidth
newpath 0 0 moveto gsave charproc grestore
end}def
/BuildChar load 0 DITfd put
%/UniqueID 5 def
/CharProcs 50 dict def
CharProcs begin
/space{}def
/.notdef{}def
/ru{500 0 rls}def
/rn{0 840 moveto 500 0 rls}def
/vr{0 800 moveto 0 -770 rls}def
/bv{0 800 moveto 0 -1000 rls}def
/br{0 750 moveto 0 -1000 rls}def
/ul{0 -140 moveto 500 0 rls}def
/ob{200 250 rmoveto currentpoint newpath 200 0 360 arc closepath stroke}def
/bu{200 250 rmoveto currentpoint newpath 200 0 360 arc closepath fill}def
/sq{80 0 rmoveto currentpoint dround newpath moveto
640 0 rlineto 0 640 rlineto -640 0 rlineto closepath stroke}def
/bx{80 0 rmoveto currentpoint dround newpath moveto
640 0 rlineto 0 640 rlineto -640 0 rlineto closepath fill}def
/ci{500 360 rmoveto currentpoint newpath 333 0 360 arc
50 setlinewidth stroke}def
/lt{0 -200 moveto 0 550 rlineto currx 800 2cx s4 add exch s4 a4p stroke}def
/lb{0 800 moveto 0 -550 rlineto currx -200 2cx s4 add exch s4 a4p stroke}def
/rt{0 -200 moveto 0 550 rlineto currx 800 2cx s4 sub exch s4 a4p stroke}def
/rb{0 800 moveto 0 -500 rlineto currx -200 2cx s4 sub exch s4 a4p stroke}def
/lk{0 800 moveto 0 300 -300 300 s4 arcto pop pop 1000 sub
0 300 4 2 roll s4 a4p 0 -200 lineto stroke}def
/rk{0 800 moveto 0 300 s2 300 s4 arcto pop pop 1000 sub
0 300 4 2 roll s4 a4p 0 -200 lineto stroke}def
/lf{0 800 moveto 0 -1000 rlineto s4 0 rls}def
/rf{0 800 moveto 0 -1000 rlineto s4 neg 0 rls}def
/lc{0 -200 moveto 0 1000 rlineto s4 0 rls}def
/rc{0 -200 moveto 0 1000 rlineto s4 neg 0 rls}def
end
/Metrics 50 dict def Metrics begin
/.notdef 0 def
/space 500 def
/ru 500 def
/br 0 def
/lt 416 def
/lb 416 def
/rt 416 def
/rb 416 def
/lk 416 def
/rk 416 def
/rc 416 def
/lc 416 def
/rf 416 def
/lf 416 def
/bv 416 def
/ob 350 def
/bu 350 def
/ci 750 def
/bx 750 def
/sq 750 def
/rn 500 def
/ul 500 def
/vr 0 def
end
DITfd begin
/s2 500 def /s4 250 def /s3 333 def
/a4p{arcto pop pop pop pop}def
/2cx{2 copy exch}def
/rls{rlineto stroke}def
/currx{currentpoint pop}def
/dround{transform round exch round exch itransform} def
end
end
/DIThacks exch definefont pop
ditstart
(psc)xT
576 1 1 xr
1(Times-Roman)xf 1 f
2(Times-Italic)xf 2 f
3(Times-Bold)xf 3 f
4(Times-BoldItalic)xf 4 f
5(Helvetica)xf 5 f
6(Helvetica-Bold)xf 6 f
7(Courier)xf 7 f
8(Courier-Bold)xf 8 f
9(Symbol)xf 9 f
10(DIThacks)xf 10 f
10 s
1 f
xi
%%EndProlog
%%Page: 1 1
10 s 0 xH 0 xS 1 f
32(--)Y
4323(--)X
3 f
12 s
988 976(Authentication)N
1625(of)X
1729(Unknown)X
2151(Entities)X
2490(on)X
2615(an)X
2740(Insecure)X
3116(Network)X
3497(of)X
1786 1088(Untrusted)N
2225(Workstations)X
2 f
10 s
1625 1408(B.)N
1714(Clifford)X
1986(Neuman)X
1 f
2253(\262)X
2 f
(,)S
2333(Jennifer)X
2616(G.)X
2714(Steiner)X
1 f
2043 1568(Project)N
2290(Athena)X
1665 1680(Massachusetts)N
2148(Institute)X
2430(of)X
2517(Technology)X
1743 1792(Cambridge,)N
2139(Massachusetts)X
2622(02139)X
1386 2016(\(bcn@june.cs.washington.edu,)N
2393(steiner@athena.mit.edu\))X
755 2428(Project)N
1008(Athena)X
1266(provides)X
1568(computing)X
1936(resources)X
2266(for)X
2386(undergraduate)X
2871(education)X
3208(at)X
3291(MIT.)X
8 s
3458 2403(1)N
10 s
3515 2428(Over)N
3701(750)X
3846(com-)X
555 2524(puters)N
774(are)X
896(scattered)X
1205(across)X
1429(30)X
1532(subnets,)X
1814(and)X
1952(support)X
2214(more)X
2401(than)X
2561(5,000)X
2763(active)X
2977(users.)X
3204(Single)X
3430(user)X
3586(IBM)X
3759(RT/PCs)X
555 2620(and)N
711(DEC)X
911(VaxStation)X
1311(IIs)X
1436(running)X
1725(versions)X
2032(of)X
2139(the)X
2277(Unix)X
2477(operating)X
2820(system)X
3082(access)X
3327(servers)X
3594(\(mostly)X
3877(Vax)X
555 2716(11/750s\))N
863(across)X
1092(the)X
1218(network.)X
1549(Workstations)X
2004(are)X
2131(publicly)X
2421(and)X
2565(privately)X
2877(owned.)X
3158(In)X
3252(both)X
3421(cases)X
3618(the)X
3743(user)X
3904(has)X
555 2812(complete)N
880(control)X
1138(over)X
1312(the)X
1441(computer)X
1775(and)X
1922(can)X
2065(easily)X
2283(gain)X
2452(superuser)X
2790(status.)X
3042(Because)X
3340(of)X
3437(this,)X
3602(workstations)X
555 2908(cannot)N
794(be)X
895(trusted)X
1138(to)X
1225(accurately)X
1581(identify)X
1855(their)X
2027(users.)X
2257(The)X
2407(network)X
2694(can't)X
2879(be)X
2979(considered)X
3351(secure)X
3581(either.)X
3828(Users)X
555 3004(can)N
691(listen)X
888(to)X
974(network)X
1261(traffic)X
1482(as)X
1573(well)X
1735(as)X
1826(generate)X
2123(traffic)X
2344(with)X
2510(forged)X
2744(addresses.)X
3115(Servers)X
3379(are)X
3501(scattered)X
3810(across)X
555 3100(campus.)N
860(It)X
929(is)X
1002(possible)X
1284(that)X
1424(users)X
1609(might)X
1815(be)X
1911(able)X
2065(to)X
2147(physically)X
2496(compromise)X
2912(the)X
3030(security)X
3304(of)X
3391(some)X
3580(of)X
3667(the)X
3785(them.)X
755 3224(A)N
838(method)X
1103(was)X
1253(needed)X
1506(to)X
1593(authenticate)X
2006(users)X
2196(wishing)X
2474(to)X
2561(access)X
2792(network)X
3080(services)X
3364(such)X
3536(as)X
3628(file)X
3759(storage,)X
555 3320(electronic)N
894(mail,)X
1078(remote)X
1323(login,)X
1529(and)X
1667(printing.)X
1982(The)X
2129(method)X
2391(had)X
2529(to)X
2613(be)X
2711(secure)X
2939(in)X
3022(the)X
3141(given)X
3340(environment,)X
3786(but)X
3909(not)X
555 3416(unduly)N
804(cumbersome)X
1241(for)X
1362(the)X
1487(user.)X
1688(Ideally,)X
1958(the)X
2083(system)X
2332(would)X
2559(appear)X
2801(to)X
2890(the)X
3014(user)X
3174(as)X
3267(if)X
3342(only)X
3510(a)X
3572(single)X
3789(system)X
555 3512(were)N
738(being)X
942(used.)X
1155(Any)X
1318(solution)X
1600(chosen)X
1848(had)X
1989(to)X
2076(scale)X
2262(well.)X
2465(Additionally,)X
2914(compromise)X
3335(of)X
3427(any)X
3568(of)X
3660(the)X
3783(servers)X
555 3608(could)N
753(not)X
875(affect)X
1079(the)X
1197(security)X
1471(of)X
1558(the)X
1676(others.)X
755 3732(The)N
904(approach)X
1223(taken)X
1421(is)X
1498(based)X
1705(on)X
1809(a)X
1869(cryptographic)X
2339(protocol)X
2630(by)X
2734(Needham)X
3065(and)X
3204(Schroeder.)X
8 s
3550 3707(2)N
10 s
3605 3732(An)N
3726(authenti-)X
555 3828(cation)N
777(server)X
1000(known)X
1244(as)X
2 f
1337(Kerberos)X
1 f
8 s
1635 3803(3,)N
1694(4)X
2 f
10 s
1 f
1759 3828(runs)N
1923(on)X
2029(a)X
2091(trusted)X
2334(computer.)X
2702(Kerberos)X
3022(knows)X
3256(the)X
3379(passwords)X
3738(\(encryp-)X
555 3924(tion)N
700(keys\))X
895(for)X
1010(each)X
1179(user)X
1334(under)X
1538(its)X
1634(authority.)X
1984(It)X
2053(also)X
2202(shares)X
2423(a)X
2479(key)X
2615(with)X
2777(each)X
2945(server.)X
3202(When)X
3414(a)X
3470(program)X
3762(running)X
555 4020(on)N
662(a)X
725(workstation)X
1130(\(e.g.)X
2 f
1300(rlogin\))X
1 f
1556(wishes)X
1801(to)X
1890(prove)X
2100(the)X
2225(identity)X
2496(of)X
2590(its)X
2692(user)X
2853(to)X
2942(a)X
3005(given)X
3210(network)X
3499(server)X
3722(\(e.g.)X
2 f
3891(rlo-)X
555 4116(gind\))N
1 f
731(,)X
778(it)X
849(contacts)X
1139(Kerberos)X
1461(and)X
1604(asks)X
1769(for)X
1890(a)X
2 f
1953(ticket)X
1 f
2161(for)X
2282(that)X
2429(server.)X
2693(The)X
2844(ticket)X
3048(is)X
3127(returned)X
3421(to)X
3509(the)X
3633(workstation)X
555 4212(encrypted)N
895(in)X
980(the)X
1101(server's)X
1379(key,)X
1538(and)X
1677(then)X
1838(again)X
2035(in)X
2120(the)X
2241(user's)X
2456(key.)X
2635(The)X
2783(user's)X
2997(password)X
3322(is)X
3397(used)X
3566(to)X
3650(decrypt)X
3913(the)X
555 4308(ticket)N
753(which)X
969(can)X
1101(then)X
1259(be)X
1355(passed)X
1589(to)X
1671(the)X
1789(server)X
2006(to)X
2088(prove)X
2291(the)X
2409(user's)X
2621(identity.)X
755 4432(In)N
849(addition)X
1138(to)X
1227(the)X
1352(ticket,)X
1577(Kerberos)X
1899(generates)X
2230(and)X
2373(returns)X
2623(to)X
2711(the)X
2835(user)X
2995(a)X
3057(temporary)X
3413(encryption)X
3782(key,)X
3944(or)X
2 f
555 4528(session)N
820(key)X
1 f
935(.)X
1009(This,)X
1205(like)X
1359(the)X
1491(ticket,)X
1723(is)X
1810(sealed)X
2045(in)X
2140(the)X
2271(user's)X
2496(password.)X
2872(A)X
2963(copy)X
3152(of)X
3252(the)X
3383(session)X
3647(key)X
3796(is)X
3882(also)X
555 4624(enclosed)N
867(in)X
960(the)X
1089(server)X
1317(ticket.)X
1566(Once)X
1767(the)X
1896(server)X
2123(decrypts)X
2425(the)X
2553(ticket)X
2761(with)X
2933(its)X
3038(key,)X
3204(both)X
3376(the)X
3504(user)X
3668(and)X
3814(server)X
555 4720(know)N
755(the)X
875(session)X
1128(key,)X
1285(which)X
1502(can)X
1635(be)X
1732(used)X
1900(to)X
1983(encrypt)X
2245(further)X
2485(communication)X
3004(between)X
3293(them.)X
3514(In)X
3602(this)X
3738(way,)X
3913(the)X
555 4816(Kerberos)N
870(server)X
1087(also)X
1236(acts)X
1381(as)X
1468(a)X
1524(key)X
1660(distribution)X
2048(center.)X
755 4940(A)N
836(ticket)X
1037(can)X
1172(be)X
1271(reused,)X
1524(but)X
1649(additional)X
1992(information)X
2393(passed)X
2630(to)X
2715(the)X
2836(server)X
3055(along)X
3255(with)X
3419(the)X
3539(ticket)X
3739(prevents)X
555 5036(replays)N
817(by)X
927(an)X
1033(imposter.)X
1382(The)X
1536(initial)X
1751(ticket)X
1958(obtained)X
2263(is)X
2345(for)X
2468(a)X
2 f
2533(ticket-granting)X
3038(service)X
1 f
3302(which)X
3527(can)X
3668(be)X
3773(used)X
3949(to)X
555 5132(obtain)N
779(tickets)X
1012(for)X
1130(other)X
1318(services.)X
1640(In)X
1730(this)X
1868(way,)X
2045(the)X
2166(user)X
2323(only)X
2488(has)X
2618(to)X
2703(enter)X
2887(a)X
2946(password)X
3272(once)X
3447(per)X
3573(login)X
3760(session.)X
555 5228(Tickets)N
818(have)X
997(a)X
1060(finite)X
1256(lifetime,)X
1552(and)X
1695(an)X
1798(attacker)X
2080(who)X
2245(manages)X
2553(to)X
2642(steal)X
2816(tickets)X
3052(from)X
3235(a)X
3298(user)X
3459(can)X
3598(use)X
3731(them)X
3917(for)X
555 5324(only)N
717(a)X
773(short)X
953(time)X
1115(\(relative)X
1403(to)X
1485(the)X
1603(life)X
1730(of)X
1817(the)X
1935(user's)X
2147(password\),)X
2517(and)X
2653(only)X
2815(from)X
2991(a)X
3047(particular)X
3375(network)X
3658(address.)X
755 5448(Under)N
985(the)X
1112(Kerberos)X
1436(model,)X
1685(the)X
1812(world)X
2028(is)X
2110(divided)X
2379(into)X
2532(separate)X
2825(domains)X
3125(of)X
3220(authentication)X
3702(authority,)X
8 s
10 f
555 5528(hhhhhhhhhhhhhhhhhh)N
1 f
555 5608(\262)N
614(Author's)X
868(present)X
1079(address:)X
1314(B.)X
1399(Clifford)X
1631(Neuman,)X
1889(Department)X
2216(of)X
2295(Computer)X
2577(Science\(FR-35\),)X
3023(University)X
3319(of)X
3398(Washington,)X
555 5688(Seattle,)N
761(Washington)X
1086(98195.)X
2 p
%%Page: 2 2
8 s 0 xH 0 xS 1 f
10 s
0 32(--)N
4323(--)X
2216 416(-)N
2263(2)X
2323(-)X
555 672(called)N
2 f
774(realms)X
1 f
999(,)X
1046(each)X
1221(with)X
1390(its)X
1492(own)X
1657(Kerberos)X
1979(server.)X
2243(Principals)X
2590(registered)X
2934(in)X
3023(one)X
3166(realm)X
3375(can)X
3513(easily)X
3726(authenti-)X
555 768(cate)N
708(themselves)X
1087(to)X
1172(servers)X
1423(in)X
1508(other)X
1696(realms.)X
1973(This)X
2138(is)X
2214(accomplished)X
2678(through)X
2950(ticket-granting)X
3444(servers)X
3694(which)X
3912(are)X
555 864(registered)N
892(in)X
974(multiple)X
1260(realms.)X
755 988(Kerberos)N
1073(is)X
1149(implemented)X
1590(as)X
1680(a)X
1739(server)X
1959(that)X
2102(runs)X
2263(on)X
2366(a)X
2424(secure)X
2652(machine,)X
2966(and)X
3104(a)X
3162(set)X
3273(of)X
3362(libraries)X
3647(that)X
3789(is)X
3864(used)X
555 1084(by)N
660(client)X
863(applications)X
1275(and)X
1415(services.)X
1738(The)X
1887(initial)X
2097(implementation)X
2623(uses)X
2785(DES)X
2960(for)X
3078(encryption,)X
3465(but)X
3591(encryption)X
3958(is)X
555 1180(supported)N
891(in)X
973(a)X
1029(separate)X
1313(module)X
1573(that)X
1713(is)X
1786(easily)X
1993(replaced.)X
755 1304(Kerberos)N
1079(has)X
1215(been)X
1396(in)X
1487(use)X
1623(at)X
1710(MIT)X
1886(for)X
2009(two)X
2158(years,)X
2377(and)X
2522(is)X
2604(currently)X
2923(in)X
3014(beta)X
3177(test)X
3317(at)X
3404(18)X
3513(sites)X
3684(across)X
3913(the)X
555 1400(country.)N
864(At)X
968(MIT,)X
1158(Kerberos)X
1476(supports)X
1770(more)X
1958(than)X
2119(8,000)X
2322(entities)X
2576(\(users)X
2791(and)X
2930(servers\))X
3208(in)X
3293(three)X
3477(different)X
3777(realms.)X
555 1496(It)N
629(is)X
707(used)X
879(for)X
998(authentication)X
1477(in)X
1564(rsh,)X
1707(rcp,)X
1854(rlogin,)X
2089(Sun's)X
2295(Network)X
2600(File)X
2748(System,)X
3027(mail,)X
3213(bulletin)X
3481(boards,)X
3739(notifica-)X
555 1592(tion)N
701(and)X
839(administrative)X
1319(applications.)X
1768(In)X
1857(summary,)X
2197(Kerberos)X
2514(allows)X
2745(users)X
2932(to)X
3016(authenticate)X
3426(themselves)X
3803(to)X
3886(net-)X
555 1688(work)N
748(services)X
1035(without)X
1307(entering)X
1598(a)X
1662(password)X
1993(at)X
2079(every)X
2286(request,)X
2565(and)X
2708(without)X
2979(relying)X
3233(on)X
3340(less)X
3487(secure)X
3720(methods,)X
555 1784(such)N
722(as)X
809(the)X
927(host-authenticated)X
2 f
1535(.rhost)X
1 f
1746(mechanism.)X
0 6360(--)N
4323(--)X
2 p
%%Trailer
xt
xs