Context Exportation and Interprocess Tokens (GSS-API Programming Guide)

GSS-API Programming Guide

Previous: Protection of Channel-Binding Information
Next: Types of Credentials Supported

Context Exportation and Interprocess Tokens

Sun's implementation supports context exportation; other implementations of the GSS-API may not. The interprocess token used in exporting a context may contain sensitive data from the original security context, including cryptographic keys. Sun's implementation of the GSS-API does not encrypt interprocess tokens. Therefore, applications that export security contexts must take appropriate steps to protect these tokens in transit (that is, wrap them themselves).

Sun's implementation detects and rejects attempted multiple imports of the same context.

Previous: Protection of Channel-Binding Information
Next: Types of Credentials Supported