[cryptography] IETF Working Group Charter on Common Interface to Cryptographic Modules (CICM)
James A. Donald
jamesd at echeque.com
Mon Jun 20 21:47:03 EDT 2011
On 2011-06-21 6:34 AM, Nico Williams wrote:
> The GSS-API has been growing extensions to deal with these situations
> by exposing more information to the application. There's also some
> extensions by which to specify policies/profiles to apply.
> Creating a whole *new* API to layer above the GSS-API would be OK IFF
> the new API were effectively a simplified profile of the GSS-API.
The GSS-API has Kerberos implicitly baked into it - symmetric
encryption, central trusted authority, function call oriented rather
than message oriented.
More information about the cryptography