Talk:Generic Security Services Application Programming Interface: Difference between revisions

Browse history interactively

← Previous edit

Content deleted Content added

VisualWikitext

Add topic

Revision as of 04:42, 1 October 2006 edit Dleonard (talk \| contribs) 197 edits List of GSSAPI implementations ← Previous edit		Latest revision as of 19:40, 25 March 2025 edit undo Phiarc (talk \| contribs) Extended confirmed users 2,472 edits m Phiarc moved page Talk:Generic Security Services Application Program Interface to Talk:Generic Security Services Application Programming Interface: proper name per rfc
(6 intermediate revisions by 6 users not shown)
Line 1: {{WikiProject banner shell\|class=Start\| ~~{{technical}}~~ {{WikiProject Computing\|importance=mid}} {{WikiProject Cryptography \|importance=Low}} }} {{Technical\|date=September 2010}} == List of GSSAPI implementations == Line 10 ⟶ 14: Shishi [http://www.gnu.org/software/shishi/], SSPI [http://msdn.microsoft.com/library/en-us/secauthn/security/authentication_functions.asp] (wire-compat only), SAP [ftp://ftp.sap.com/pub/ietf-work/gssapi/gsskrb5/], SAP is not a GSS-API implementation; it simply uses GSS-API [[User:SamHartman\|SamHartman]] 21:28, 16 October 2007 (UTC) but who else? - [[User:Dleonard\|DLeonard]] 04:42, 1 October 2006 (UTC) Line 20 ⟶ 25: application. I don't know how many of them (if any) are or have ever participated in IETF activities. Here's a quick list of companies: ietf mechanism: Company (Country) Kerberos 5 MIT, CyberSafe, CA/Platinum, Microsoft, heimdal SPKM Entrust (CA), Shym (US), Baltimore (US) proprietary mechanisms: AM-DCE Bull (FR) (propr.) Sagem (FR) Line 41 ⟶ 46: kobil Kobil GmbH (DE) T-Secure secunet/Telekom (DE) how many do you recognize? ==Problems With the Article== I read the article and noticed several problems that I don't have time to work on now so I decided to document them. I don't understand how [[RADIUS]]is a competing technology * I think the proper abbreviation is GSS-API not GSSAPI; see RFC 2743. * I'm not convinced that impersonationa is incompatible with IETF GSS-API. in particular GSS-API does provide a credential delegation mechanism. The only interisting thing behind impersonation is that you are able to tell the local OS to use the credential for everything including local access checks. For every GSS-API operation you can use the delegated credential just as in Windows. However you need a specific OS call to use that for local operations and that is in fact outside the scope of GSS-API.