Generic Security Service Algorithm for Secret Key Transaction
GSS-TSIG (Generic Security Service Algorithm for Secret Key Transaction) is an extension to the TSIG DNS authentication protocol for secure key exchange. It is a GSS-API algorithm which uses Kerberos for passing security tokens to provide authentication, integrity and confidentiality. GSS-TSIG (RFC 3645) uses a mechanism like SPNEGO with Kerberos or NTLM. In Windows, this implementation is called Secure Dynamic Update.
- Comment
- enGSS-TSIG (Generic Security Service Algorithm for Secret Key Transaction) is an extension to the TSIG DNS authentication protocol for secure key exchange. It is a GSS-API algorithm which uses Kerberos for passing security tokens to provide authentication, integrity and confidentiality. GSS-TSIG (RFC 3645) uses a mechanism like SPNEGO with Kerberos or NTLM. In Windows, this implementation is called Secure Dynamic Update.
- Has abstract
- enGSS-TSIG (Generic Security Service Algorithm for Secret Key Transaction) is an extension to the TSIG DNS authentication protocol for secure key exchange. It is a GSS-API algorithm which uses Kerberos for passing security tokens to provide authentication, integrity and confidentiality. GSS-TSIG (RFC 3645) uses a mechanism like SPNEGO with Kerberos or NTLM. In Windows, this implementation is called Secure Dynamic Update. GSS-TSIG uses TKEY records for key exchange between the DNS client and server in GSS-TSIG mode. For authentication between the DNS client and Active Directory, the AS-REQ, AS-REP, TGS-REQ, TGS-REP exchanges must take place for granting of ticket and establishing a security context. The security context has a limited lifetime during which dynamic updates to the DNS server can take place.
- Hypernym
- Extension
- Is primary topic of
- Generic Security Service Algorithm for Secret Key Transaction
- Label
- enGeneric Security Service Algorithm for Secret Key Transaction
- Link from a Wikipage to another Wikipage
- Active Directory
- Authentication protocol
- Category:Cryptographic protocols
- Kerberos (protocol)
- NTLM
- SPNEGO
- TKEY record
- TSIG
- SameAs
- 4kedu
- Generic Security Service Algorithm for Secret Key Transaction
- m.03cd98f
- Q5532658
- Subject
- Category:Cryptographic protocols
- WasDerivedFrom
- Generic Security Service Algorithm for Secret Key Transaction?oldid=797307005&ns=0
- WikiPageLength
- 1118
- Wikipage page ID
- 13660031
- Wikipage revision ID
- 797307005
- WikiPageUsesTemplate
- Template:Refimprove
- Template:Reflist