projects techreports press lab location staff
citi top.2 top.3
citi mid.3
bot.1 bot.2 bot.3

Projects : pkinit

News: CITI is hosting a pkinit interoperability testing event on May 30 and May 31, 2007. More details here.


CITI will provide a reference implementation of PKINIT and plans to integrate it with MIT Kerberos. We will provide both the client (pkinit) and server (kdc) sides, and will interoperate with the Windows 2003 Server KDC. We will use PKCS#11 for accessing certificates stored on a smartcard.

Smartcard Setup

The latest public version of the code can be found in the MIT Subversion tree

More specifically, the pkinit code is here


IETF Kerberos WG (krb-wg)
rfc4556 (pkinit)
OpenSC and OpenCT
RSA (pkcs11)
MUSCLE (pcsc)

Other implementations:

Heimdal pkinit
Apple's pkinit: svn://


William A. (Andy) Adamson, Prinicpal Investigator
Jim Rees
Kevin Coffman
Olga Kornievskaia projects | techreports | press | lab | location | staff Email address
or call +1 734 763 2929
Copyright © 1996-2013
The Regents of the University of Michigan