Kerberos ASN.1 state diagram

Page edited by Emmanuel L=C3=A9charny

Changes (14)

=20 =20

 ...
 h3. EncTicketPart (0x63) 
=
 The *EncTicketPart* messa=
ge is described here ([^EncTicketPart.gr=
aphml|] ):
 !EncTicketPart.png|borde=
r=3D1!
 ...
 h3. AS-REP (0x6B)
 The *AS-REP* message is d=
escribed here ([^AS_REP.graphml|] ):
 !AS_REP.png|border=3D1! =
 ...
 h3. TGS-REP (0x6D) 
 
<=
/td>
 The *TGS-REP* message is =
described here ([^TGS_REP.graphml|] ):
 !TGS_REP.png|border=3D1!=
 ...
 h3. AP-REQ (0x6E3) 
 
<=
/td>
 The *AP-REQ* message is d=
escribed here ([^AP_REQ.graphml|] ):
 !AP_REQ.png|border=3D1! =
 ...
 h3. AP-REP (0x6F)
 The *AP-REP* message is d=
escribed here ([^AP_REP.graphml|] ):
 !AP_REP.png|border=3D1! =
 ...
 h3. KRB-SAFE (0x74) 
 
=
 The *KRB_SAFE* message is=
 described here ([^KRB_SAFE.graphml|] ):
 !KRB-SAFE.png|border=3D1=
!
 ...
 h3. KRB-PRIV (0x75) 
 
=
 The *KRB-PRIV* message is=
 described here ([^KRB_PRIV.graphml|] ( [^KRB=
_PRIV.graphml] ):
 !KRB_PRIV.png|border=3D1=
!
 ...
 h3. KRB-CRED (0x76) 
 
=
 The *KRB-CRED* message is=
 described here ([^KRB_CRED.graphml|] ):
 !KRB_CRED.png|border=3D1=
!
 ...
 h3. EncASRepPart (0x79) 
 =
 The *EncASRepPart* messag=
e is described here ([^EncASRepPart.grap=
hml|] ):
 !EncASRepPart.png|border=
=3D1!
 ...
 h3. EncTGSRepPart (0x7A) 
=
 The *EncTGSRepPart* messa=
ge is described here ([^EncTGSRepPart.gr=
aphml|] ):
 !EncTGSRepPart.png|borde=
r=3D1!
 ...
 h3. EncAPRepPart (0x7B) 
 =
 The *EncAPRepPart* messag=
e is described here ([^EncAPRepPart.grap=
hml|] ):
 !EncAPRepPart.png|border=
=3D1!
 ...
 h3. EncKrbPrivPart (0x7C)
 The *EncKrbPrivPart* mess=
age is described here ([^EncKrbPrivPart.=
graphml|] ):
 !EncKrbPrivPart.png|bord=
er=3D1!
 ...
 h3. EncKrbCredPart (0x7D)
 The *EncKrbCredPart* mess=
age is described here ([^EncKrbCredPart.=
graphml|] ):
 !EncKrbCredPart.png|bord=
er=3D1!
 ...
 h3. KRB-ERROR (0x7E)
 The *KRB-ERROR* message i=
s described here ([^KRB_ERROR.graphml|] ):
 !KRB_ERROR.png|border=3D=
1!
 ...

Full Content

Introduc= tion

This page expose all he state diagram for each of the Kerberos messages.=

Messages

Here are all the possible messages for Kerberos (kerberos-messages.graphml ):

Ticket (0x61= )

The Ticket message is described here (Ticket.graphml ):

Authe= nticator (0x62)

The Authenticator message is described here (Authenticator.graphml ):

EncTi= cketPart (0x63)

The EncTicketPart message is described here ([^EncTicketPart.graphml] ):

Unable to render embedded object: File (EncTicketP= art.png) not found.

AS-REQ (0x6A)=

The AS-REQ message is described here (AS_REQ.graphml ):

AS-REP (0x6B)=

The AS-REP message is described here ([= ^AS_REP.graphml] ):

Unable to render embedded object: File (AS_REP.png= ) not found.

TGS-REQ (0x6= C)

The TGS-REQ message is described here (TGS_REQ.graphml ):

TGS-REP (0x6= D)

The TGS-REP message is described here ([= ;^TGS_REP.graphml] ):

Unable to render embedded object: File (TGS_REP.pn= g) not found.

AP-REQ (0x6E= 3)

The AP-REQ message is described here ([= ^AP_REQ.graphml] ):

Unable to render embedded object: File (AP_REQ.png= ) not found.

AP-REP (0x6F)=

The AP-REP message is described here ([= ^AP_REP.graphml] ):

Unable to render embedded object: File (AP_REP.png= ) not found.

KRB-SAFE (0= x74)

The KRB_SAFE message is described here ( = 1;^KRB_SAFE.graphml] ):

Unable to render embedded object: File (KRB-SAFE.p= ng) not found.

KRB-PRIV (0= x75)

The KRB-PRIV message is described here ( KRB_PRIV.graphml ):

KRB-CRED (0= x76)

The KRB-CRED message is described here ( = 1;^KRB_CRED.graphml] ):

Unable to render embedded object: File (KRB_CRED.p= ng) not found.

EncASR= epPart (0x79)

The EncASRepPart message is described here ([^EncASRepPart.graphml] ):

Unable to render embedded object: File (EncASRepPa= rt.png) not found.

EncTG= SRepPart (0x7A)

The EncTGSRepPart message is described here ([^EncTGSRepPart.graphml] ):

Unable to render embedded object: File (EncTGSRepP= art.png) not found.

EncAPR= epPart (0x7B)

The EncAPRepPart message is described here ([^EncAPRepPart.graphml] ):

Unable to render embedded object: File (EncAPRepPa= rt.png) not found.

EncK= rbPrivPart (0x7C)

The EncKrbPrivPart message is described here ([^EncKrbPrivPart.graphml] ):

Unable to render embedded object: File (EncKrbPriv= Part.png) not found.

EncK= rbCredPart (0x7D)

The EncKrbCredPart message is described here ([^EncKrbCredPart.graphml] ):

Unable to render embedded object: File (EncKrbCred= Part.png) not found.

KRB-ERROR = (0x7E)

The KRB-ERROR message is described here (&#= 91;^KRB_ERROR.graphml] ):

Unable to render embedded object: File (KRB_ERROR.= png) not found.

Components

Here are all the components we are using in the messages.

AD-AND-OR

Link : [^AD_AND_OR.graphml]

Unable to render embedded object: File (AD_AND_OR.= png) not found.

AD-KDCIssued

Link : [^AD_KDCIssued.graphml]

Unable to render embedded object: File (AD_KDCIssu= ed.png) not found.

AD-IF-RELEVANT
Link : [^AD_IF_RELEVANT.graphml]
Unable to render embedded object: File (AD_IF_RELE= VANT.png) not found.

AD-MANDATOR= Y-FOR-KDC

Link : [^AD_MANDATORY_FOR_KDC.graphml]

Unable to render embedded object: File (AD_MANDATO= RY_FOR_KDC.png) not found.

Authorizati= onData

Link : Authorizati= onData.graphml

Checksum

Link : Checksum.graphml=

EncKDCRepPart
Link : [^EncKDCRepPart.graphml]

Unable to render embedded object: File (EncKDCRepP= art.png) not found.

EncryptedData
Link : EncryptedData.g= raphml

EncryptionKey
Link : EncryptionKey.g= raphml

ETYPE-INFO

Link : [^ETYPE_INFO.graphml]

Unable to render embedded object: File (ETYPE_INFO= .png) not found.

ETYPE-INFO2

Link : [^ETYPE_INFO2.graphml]

Unable to render embedded object: File (ETYPE_INFO= 2.png) not found.

ETYPE-INFO-ENT= RY

Link : [^ETYPE_INFO_ENTRY.graphml]<= /p>

Unable to render embedded object: File (ETYPE_INFO= _ENTRY.png) not found.

ETYPE-INFO-EN= TRY2

Link : [^ETYPE_INFO_ENTRY2.graphml]=

Unable to render embedded object: File (ETYPE_INFO= _ENTRY2.png) not found.

HostAddress

Link : [^HostAddress.graphml]

Unable to render embedded object: File (HostAddres= s.png) not found.

HostAddresses
Link : [^HostAddresses.graphml]

Unable to render embedded object: File (HostAddres= ses.png) not found.

KrbCredInfo

Link : [^KrbCredInfo.graphml]

Unable to render embedded object: File (KrbCredInf= o.png) not found.

KDC-REP

Link : [^KDC_REP.graphml]

Unable to render embedded object: File (KDC_REP.pn= g) not found.

KDC-REQ

Link : [^KDC_REQ.graphml]

Unable to render embedded object: File (KDC_REQ.pn= g) not found.

KDC_REQ_BODY

Link : KDC_REQ_BODY.gra= phml

KRB-SAFE-BODY
Link : [^KRB_SAFE_BODY.graphml]

Unable to render embedded object: File (KRB_SAFE_B= ODY.png) not found.

LastReq

Link : LastReq.graphml

METHOD-DATA

Link : [^METHOD_DATA.graphml]

Unable to render embedded object: File (METHOD_DAT= A.png) not found.

PA-DATA

Link : PA_DATA.graphml

PA-ENC-TIMESTA= MP

Link : [^PA_ENC_TIMESTAMP.graphml]<= /p>

Unable to render embedded object: File (PA_ENC_TIM= ESTAMP.png) not found.

PA-ENC-TS-ENC

Link : [^PA_ENC_TS_ENC.graphml]

Unable to render embedded object: File (PA_ENC_TS_= ENC.png) not found.

PrincipalName
Link : PrincipalName.g= raphml

TransitedEn= coding

Link : [^TransitedEncoding.graphml]=

Unable to render embedded object: File (TransitedE= ncoding.png) not found.

TYPED-DATA

Link : TYPED_DATA.graphml=

Change Notification Preferences

View Online | Vie= w Changes