[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: SASL security layers

To: "'Chris Newman'" <Chris.Newman@xxxxxxxxxxxx>
Subject: RE: SASL security layers
From: Paul Leach <paulle@xxxxxxxxxxxxx>
Date: Mon, 12 Oct 1998 21:36:54 -0700
Cc: "'ietf-sasl@xxxxxxx'" <ietf-sasl@xxxxxxx>
Sender: owner-ietf-sasl@xxxxxxx

Does the "buffer" include the security mechanism's trailer, or not?

> -----Original Message-----
> From: Chris Newman [mailto:Chris.Newman@xxxxxxxxxxxx]
> Sent: Monday, October 12, 1998 11:35 AM
> To: Paul Leach
> Cc: 'ietf-sasl@xxxxxxx'
> Subject: Re: SASL security layers
> 
> 
> On Fri, 9 Oct 1998, Paul Leach wrote:
> > When applied to GSS mechanisms, the following issue arises. 
> My data stream
> > looks like this:
> > 
> > 	4 byte count
> > 	App protocol data unit (APDU)
> > 	padding to cipher block size
> > 	GSS mechanism trailer
> 
> SASL only specifies that the cipher text buffers begin with a 4-octet
> count (covering the remainder of the buffer).  The structure 
> of the cipher
> text buffers is otherwise entirely defined by the mechanism.
> 
> If you're using the GSSAPI SASL mechanism, the buffer consists of the 
> entire output of a GSS_Wrap operation, with a SASL 
> security-layer buffer
> length prepended.
> 
> 		- Chris
> 
>

Follow-Ups:
- RE: SASL security layers
  - From: Chris Newman

Prev by Date: Re: SASL security layers
Next by Date: RE: SASL security layers
Previous by thread: Re: SASL security layers
Next by thread: RE: SASL security layers
Index(es):
- Date
- Thread