%META:TOPICINFO{author="JosephHVilas" date="1109199041" format="1.0" version="1.5"}%
%META:TOPICPARENT{name="KerberosV"}%
The function that maps a password to an encryption key is called StringToKey.  The AFS standard one uses the realm name as a salt.  The MIT standard is different from this and there were changes between v4 and v5 as well, I think.

-- Main.TedAnderson - 23 Jan 2002

The MIT v5 StringToKey uses the same underlying algorithm as the v4 StringToKey, but adds a salt based on the principal name.

-- Main.DerrickBrashear - 24 Jan 2002