GSSAPI FIPS compliant AES encryption
Griff James
1
Reputation point
Are there any plans in the pipeline to update MSFT's GSSAPI implementation to add support for AES-256 encryption?
I know that no RFC currently exists for this, the strongest session key supported by the RFCs is 3DES which is deprecated.
On a related note the NTLMv2, SMB and NETLOGON protocols are also lagging behind with only AES-128 being supported. Any plans to update these as well?
thx
Sign in to answer