Introduction
This page expose all he state diagram for each of the Kerberos messages.
Messages
Here are all the possible messages for Kerberos (kerberos-messages.graphml ):
Ticket (0x61)
The Ticket message is described here (Ticket.graphml ):
Authenticator (0x62)
The Authenticator message is described here (Authenticator.graphml ):
EncTicketPart (0x63)
The EncTicketPart message is described here (EncTicketPart.graphml ):
AS-REQ (0x6A)
The AS-REQ message is described here (AS_REQ.graphml ):
AS-REP (0x6B)
The AS-REP message is described here (AS_REP.graphml ):
TGS-REQ (0x6C)
The TGS-REQ message is described here (TGS_REQ.graphml ):
TGS-REP (0x6D)
The TGS-REP message is described here (TGS_REP.graphml ):
AP-REQ (0x6E)
The AP-REQ message is described here (AP_REQ.graphml ):
AP-REP (0x6F)
The AP-REP message is described here (AP_REP.graphml ):
KRB-SAFE (0x74)
The KRB_SAFE message is described here (KRB_SAFE.graphml ):
KRB-PRIV (0x75)
The KRB-PRIV message is described here ( KRB_PRIV.graphml ):
KRB-CRED (0x76)
The KRB-CRED message is described here (KRB_CRED.graphml ):
EncASRepPart (0x79)
The EncASRepPart message is described here (EncASRepPart.graphml ):
EncTGSRepPart (0x7A)
The EncTGSRepPart message is described here (EncTGSRepPart.graphml ):
EncAPRepPart (0x7B)
The EncAPRepPart message is described here (EncAPRepPart.graphml ):
EncKrbPrivPart (0x7C)
The EncKrbPrivPart message is described here (EncKrbPrivPart.graphml ):
EncKrbCredPart (0x7D)
The EncKrbCredPart message is described here (EncKrbCredPart.graphml ):
KRB-ERROR (0x7E)
The KRB-ERROR message is described here (KRB_ERROR.graphml ):
Components
Here are all the components we are using in the messages.
AD-AND-OR
Link : AD_AND_OR.graphml
AD-KDCIssued
Link : AD_KDCIssued.graphml
AD-IF-RELEVANT
Link : AD_IF_RELEVANT.graphml
AD-MANDATORY-FOR-KDC
Link : AD_MANDATORY_FOR_KDC.graphml
AuthorizationData
Link : AuthorizationData.graphml
Checksum
Link : Checksum.graphml
EncKDCRepPart
Link : EncKDCRepPart.graphml
EncryptedData
Link : EncryptedData.graphml
EncryptionKey
Link : EncryptionKey.graphml
ETYPE-INFO
Link : ETYPE_INFO.graphml
ETYPE-INFO2
Link : ETYPE_INFO2.graphml
ETYPE-INFO-ENTRY
Link : ETYPE_INFO_ENTRY.graphml
ETYPE-INFO2-ENTRY
Link : ETYPE_INFO2_ENTRY.graphml
HostAddress
Link : HostAddress.graphml
HostAddresses
Link : HostAddresses.graphml
KrbCredInfo
Link : KrbCredInfo.graphml
KDC-REP
Link : KDC_REP.graphml
KDC-REQ
Link : KDC_REQ.graphml
KDC_REQ_BODY
Link : KDC_REQ_BODY.graphml
KRB-SAFE-BODY
Link : KRB_SAFE_BODY.graphml
LastReq
Link : LastReq.graphml
METHOD-DATA
Link : METHOD_DATA.graphml
PA-DATA
Link : PA_DATA.graphml
PA-ENC-TIMESTAMP
Link : PA_ENC_TIMESTAMP.graphml
PA-ENC-TS-ENC
Link : PA_ENC_TS_ENC.graphml
PrincipalName
Link : PrincipalName.graphml
TransitedEncoding
Link : TransitedEncoding.graphml
TYPED-DATA
Link : TYPED_DATA.graphml