RPCSEC_GSS
E193771
RPCSEC_GSS is a security protocol framework that provides strong authentication, integrity, and optional privacy for Remote Procedure Call (RPC) services using the Generic Security Services (GSS) API.
All labels observed (3)
| Label | Occurrences |
|---|---|
| GSSAPI | 2 |
| RPCSEC_GSS canonical | 1 |
| Remote Procedure Call Security Generic Security Service | 1 |
Statements (47)
| Predicate | Object |
|---|---|
| instanceOf |
RPC security mechanism
ⓘ
security protocol framework ⓘ |
| abbreviationOf |
RPCSEC_GSS
self-linksurface differs
ⓘ
surface form:
Remote Procedure Call Security Generic Security Service
|
| appliesTo | Remote Procedure Call services ⓘ |
| basedOn | GSS-API security contexts ⓘ |
| category |
authentication protocol
ⓘ
authorization framework ⓘ network security protocol ⓘ |
| compatibleWith | existing GSS-API implementations ⓘ |
| defines |
RPC security context
ⓘ
per-call security parameters ⓘ security flavor for RPC ⓘ |
| designedFor | ONC RPC ⓘ |
| enables |
mutual authentication between RPC client and server
ⓘ
secure NFS deployments ⓘ |
| extends | ONC RPC authentication model ⓘ |
| goal | provide strong security for RPC without changing application semantics ⓘ |
| operatesAtLayer | application layer ⓘ |
| protects |
RPC call arguments
ⓘ
RPC call results ⓘ |
| providesProperty |
data integrity
ⓘ
message protection ⓘ optional privacy ⓘ strong authentication ⓘ |
| publishedBy | Internet Engineering Task Force ⓘ |
| securityProperty |
can provide confidentiality for RPC payloads
ⓘ
prevents replay attacks on RPC messages ⓘ prevents undetected modification of RPC messages ⓘ |
| standardizedIn | RFC 2203 ⓘ |
| supportsFeature |
context establishment
ⓘ
context expiration ⓘ credential delegation ⓘ message tampering detection ⓘ per-RPC authentication ⓘ per-RPC confidentiality ⓘ per-RPC integrity protection ⓘ replay detection ⓘ sequence number protection ⓘ |
| supportsMechanism |
Kerberos via GSS-API
ⓘ
other GSS-API security mechanisms ⓘ |
| usedWith |
NFS version 3
ⓘ
NFS version 4 ⓘ other ONC RPC-based services ⓘ |
| usesAPI | Generic Security Services Application Programming Interface ⓘ |
| usesConcept |
security context handles
ⓘ
sequence numbers ⓘ verifiers ⓘ |
Referenced by (4)
Full triples — surface form annotated when it differs from this entity's canonical label.
this entity surface form:
GSSAPI
this entity surface form:
GSSAPI
this entity surface form:
Remote Procedure Call Security Generic Security Service