ABSTRACT
This section provides an overview of standards efforts
relating to Kerberos. Some of these efforts are ongoing
and have not yet been approved by the IETF.
Authorization
Ongoing standards efforts are intended to define com-
monly used authorization data types for identifying the
source of authorization information[1] (e.g., to distinguish
between client-and KDC-supplied authorization informa-
tion). This effort is also aimed at standardizing the beha-
vior of servers in the presence, or absence, of certain
authorization information.