Loading Profile...
How does OAuth compare with Kerberos?
How does OAuth compare with ticket granting services like Kerberos?
I understand that OAuth is like the ticket granting service (TGS) in Kerberos.
What about the other parts? Can OAuth be organized into domains?
Can TGS be delegated, in addition to primary services?
Are the threat models the same? Are the protection models the same?
If the comparison hasn't been made, does anyone think it is worthwhile to study this?
-chris
I understand that OAuth is like the ticket granting service (TGS) in Kerberos.
What about the other parts? Can OAuth be organized into domains?
Can TGS be delegated, in addition to primary services?
Are the threat models the same? Are the protection models the same?
If the comparison hasn't been made, does anyone think it is worthwhile to study this?
-chris
I’m happy
5 people have this question
I have this question, too!
Tell me when someone answers.
The more people who ask this question, the more it gets noticed.
The more people who ask this question, the more it gets noticed.
