论文信息 - Deprecate Triple-DES (3DES) and RC4 in Kerberos

Deprecate Triple-DES (3DES) and RC4 in Kerberos

The 3DES and RC4 encryption types are steadily weakening in cryptographic strength, and the deprecation process should be begun for their use in Kerberos. Accordingly, RFC 4757 is moved to Historic status, as none of the encryption types it specifies should be used, and RFC 3961 is updated to note the deprecation of the triple-DES encryption types.

Benjamin Kaduk | Michiko Short

[1] Lily Chen,et al. MD4 to Historic Status , 2011, RFC.

[2] Larry Zhu,et al. The RC4-HMAC Kerberos Encryption Types Used by Microsoft Windows , 2006, RFC.

[3] Tom Yu,et al. Deprecate DES, RC4-HMAC-EXP, and Other Weak Cryptographic Algorithms in Kerberos , 2012, RFC.