The Center for Information Technology Integration (CITI) at the University of Michigan is proud to host an interoperability testing event of Kerberos implementations of the PKINIT protocol (rfc4556).
CITI has been sponsored by Sandia National Laboratories, and working with the MIT Kerberos team, to provide a PKINIT implementation to be included in the MIT distribution. See the project page.
Anyone interested in testing client or server implementations of PKINIT (or specific smartcard or certificate configurations) is welcome to attend. (This includes implementations of earlier versions of the specification, such as found in Windows 2003 and Windows XP.)
Those interested in attending should send mail to email@example.com for further details. For space and other planning purposes, please notify us by May 4, 2007 if you plan to attend.
DatesWednesday and Thursday, May 30 and 31, 2007.
Expected AttendeesSam Hartman, MIT
Ken Raeburn, MIT
Kevin Koch, MIT
Nalin Dahyabhai, Redhat
Love Hörnquist Åstrand, Stockholm University (Heimdal)
Doug Engert, Argonne National Laboratory
Christopher Nebergall, Sandia National Laboratories
Ken Renard, DoD High Performance Computing Modernization Program
General testing of clients and servers will take place. Additionally, we will be running the automated gssMonger tests.
Hotel and Travel Information
See the CITI Location page for information about travelling to Ann Arbor and area hotels.
Parking at CITIFinding free street parking within a block or two of CITI is usually not a problem. See the CITI location page for the street parking rules.
ScheduleIn general, the doors to CITI will be open between 9:00 AM and 6:00 PM.
Fruits, Coffee, Pop, Donuts/Bagels will be provided each morning. Lunch and Dinner are on your own.
We will have 10/100/1000 Mb switches, and a 10/100 Mb hub. If you need to monitor network traffic you can put the monitoring device on the same 100M hub as the device being monitored. Please give priority for the 1G ports to those who actually have 1G interfaces. Please bring your own cables, 3-6 ft (1-2 m). IP addresses will be real (no NAT) but will be behind a firewall that lets connections out but not in. The firewall is optional and we are happy to open it up as much or as little as you want.
There will be both static and dhcp addresses available. We will be able to provide names within the citi.umich.edu domain. If you need static addresses and/or have special requirements for the firewall, please let us know ahead of time. CITI's wireless network is also available for generic laptop use, but is not behind the firewall. (The WEP key is posted inside CITI.)
Download CA certificates
Go here to download CA certificates that will be used during the event.
Questions? Email firstname.lastname@example.org.