Introduction to the Kerberos Products and GSS-API
Generic Security Service Application Programming Interface (GSS-API)
Generic Security Service Application
Programming Interface (GSS-API)
The GSS-API provides authentication, integrity, and confidentiality services to the calling application.
Figure 2-4 shows the libgss.sl shared library, which is independent of underlying security mechanisms. The figure illustrates how the underlying security mechanisms -- such as Kerberos, Simple Public Key Management (SPKM) -- work with respect to the GSS-API library. If you are developing applications using GSS-APIs, you do not have to change the application’s code whenever the underlying security mechanism is changed. Instead, you can change the underlying security mechanism at runtime using the configuration options.
Figure 2-4 | GSS-API Library |