Uploaded image for project: 'I&AM Kerberos'
  1. KRB-11

As a security-conscious Kerberos user, I want session keys to have forward secrecy

    Details

    • Type: Story
    • Status: To Do (View workflow)
    • Priority: Normal
    • Resolution: Unresolved
    • Affects versions: None
    • Fix versions: None
    • Components: krb5
    • Labels:
      None
    • Sprint:

      Description

      Kerberos currently has no forward secrecy properties. For example, an attacker with pervasive monitoring capability who gains access to a user's password can decrypt all past communications made by that user, and can also observe the new password when the user's password is changed. By performing ECDH exchanges during AP-REQ/AP-REP, TGS exchanges, and password changes, Kerberos can mitigate these risks.

      SPAKE preauth will provided a certain measure of forward secrecy (with respect to user passwords, but not krbtgt keys) for AS exchanges when it is used.

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              Greg Hudson (Inactive)
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:

                Who's Looking?