Top Document: Kerberos FAQ, v2.0 (last modified 8/18/2000) Previous Document: 1.10. How are realms named? Do they really have to be uppercase? Next Document: 1.12. I see the acronyms TGT and TGS used a lot. What do they mean? See reader questions & answers on this topic! - Help others by sharing your knowledge ASN.1 is short for Abstract Syntax Notation One. It is a notation for describing abstract types and values. Using ASN.1, one can describe the format of complex objects by putting together more simpler types. However, ASN.1 does not specify how these objects are encoded into strings of ones and zeros. For that, you must use a set of encoding rules. The two most common encoding rules are the Basic Encoding Rules (BER) and the Distinguished Encoding Rules (DER). The only difference between BER and DER is that there are multiple ways to encode objects in the BER, but the DER is a subset of the BER such that there is only one possible way to encode each object. Kerberos 5 uses ASN.1 and the DER to encode and decode all of the Kerberos protocol messages. Unless you are planning on adding to the Kerberos protocol itself, you don't really need to worry about ASN.1 at all. If you wish to learn more about ASN.1, I would suggest reading: * Burton S. Kaliski Jr., "A Layman's Guide to a Subset of ASN.1, BER, and DER" <ftp://ftp.rsa.com/pub/pkcs/ps/layman.ps> * Brian Tung, "ASN.1: Wherefore Art Thou?" <http://www.isi.edu/~brian/security/asn1.html> User Contributions:Top Document: Kerberos FAQ, v2.0 (last modified 8/18/2000) Previous Document: 1.10. How are realms named? Do they really have to be uppercase? Next Document: 1.12. I see the acronyms TGT and TGS used a lot. What do they mean? Single Page [ Usenet FAQs | Web FAQs | Documents | RFC Index ] Send corrections/additions to the FAQ Maintainer: Ken Hornstein <kenh@cmf.nrl.navy.mil>
Last Update March 27 2014 @ 02:11 PM
|
Comment about this article, ask questions, or add new information about this topic: