This document specifies two encryption types and two corresponding checksum types for Kerberos 5. The new types use AES in CBC mode with PKCS#5 padding for confidentiality and HMAC with a SHA-2 hash for integrity.