Kerberos Client Version D.1.6.2.04 Release Notes

ManualsBrandsHP ManualsSoftwareHP-UX Kerberos Data Security Software

Table 1-3 Encryption Types supported by Kerberos Client D.1.6.2.04 (continued)

DescriptionEncryption Type

DES with HMAC/sha1des-hmac-sha1

ArcFour with HMAC/md5arcfour-hmac

ArcFour with HMAC/md5

This encryption type is an alias to the arcfour-hmac encryption type. If

you specify rc4-hmac in the configuration file, then it’s behavior is the

same as arcfour-hmac.

rc4-hmac

ArcFour with HMAC/md5

This encryption type is an alias to the arcfour-hmac encryption type. If

you specify arcfour-hmac-md5 in the configuration file, then it’s behavior

is the same as arcfour-hmac.

arcfour-hmac-md5

Exportable ArcFour with HMAC/md5arcfour-hmac-exp

Exportable ArcFour with HMAC/md5

This encryption type is an alias to the arcfour-hmac-exp encryption

type. If you specify rc4-hmac-exp in the configuration file, then it’s

behavior is the same as arcfour-hmac-exp.

rc4-hmac-exp

Exportable ArcFour with HMAC/md5

This encryption type is an alias to the arcfour-hmac-exp encryption

type. If you specify arcfour-hmac-md5-exp in the configuration file,

then it’s behavior is the same as arcfour-hmac-exp.

arcfour-hmac-md5-exp

AES-128 CTS mode with 96-bit SHA-1 HMACaes128-cts-hmac-sha1-96

AES-128 CTS mode with 96-bit SHA-1 HMAC

This encryption type is an alias to the aes128-cts-hmac-sha1-96

encryption type. If you specify aes128-cts in the configuration file, then

it’s behavior is the same as aes128-cts-hmac-sha1-96.

aes128-cts

AES-256 CTS mode with 96-bit SHA-1 HMACaes256-cts-hmac-sha1-96

AES-256 CTS mode with 96-bit SHA-1 HMAC

This encryption type is an alias to the aes256-cts-hmac-sha1-96

encryption type. If you specify aes256-cts in the configuration file, then

it’s behavior is the same as aes256-cts-hmac-sha1-96.

aes256-cts

What Is New in This Version

Kerberos Client D.1.6.2.04 is a defect-fix release and does not contain any new features. For more

information on the defects fixed in this release, see “Defect Fixes in This Version” (page 9).

Features Supported From Kerberos Client Version 1.3.5

Kerberos Client version D.1.6.2.04 also supports the following features from Kerberos Client

version 1.3.5:

• SASL/GSS-API bind to Netscape Directory Server used to fail when SSL was enabled

• Support for powerful cryptographic algorithms

This version of Kerberos Client software supports 3DES, AES, and RC4

• Support for IPv6

IPv6 support is enabled on this version of Kerberos Client software

What Is New in This Version 7