Getting a Host Ticket

• The client then decrypts the new session key, KS2, with it’s copy of the old session key, KS1.

• Now the client has a copy of the new session key, KS2, and a copy of the service ticket encrypted with the service’s secret key, E(Tktservice, Kservice)

• These are also stored in the credentials cache for possible future reuse.

Previous slide

Next slide

Back to first slide

View graphic version