Factbites
 Where results make sense
About us   |   Why use us?   |   Reviews   |   PR   |   Contact us  

Topic: Kerberos (protocol)


Related Topics

In the News (Sat 20 Jul 19)

  
  Kerberos (protocol) - Wikipedia, the free encyclopedia
Kerberos is a computer network authentication protocol which allows individuals communicating over an insecure network to prove their identity to one another in a secure manner.
Kerberos prevents eavesdropping or replay attacks, and ensures the integrity of the data.
Authorities in the United States classed Kerberos as a munition and banned its export because it used the DES encryption algorithm (with 56-bit keys).
en.wikipedia.org /wiki/Kerberos_(protocol)   (1339 words)

  
 Kerberos Protocol Overview   (Site not responding. Last check: 2007-10-21)
Kerberos Version 5, documented in RFC 1510, was originally developed by MIT's Project Athena.
Kerberos is designed to address the problem of authentication in a network of slightly trusted client systems.
Kerberos uses dedicated authentication servers which can be hosted on machines physically distinct from any other network services, such as file or print servers.
www.freesoft.org /CIE/Topics/72.htm   (362 words)

  
 [No title]
In Kerberos, this might be a ticket whose use is restricted by the contents of the authorization data field, but which lists no network addresses, together with the session key necessary to use the ticket.
Kerberos to client KRB_AS_REP or 5.4.2 KRB_ERROR 5.9.1 The Authentication Service (AS) Exchange between the client and the Kerberos Authentication Server is usually initiated by a client when it wishes to obtain authentication credentials for a given server but currently holds no credentials.
Alternatively, the Kerberos server may return a TGT for a realm which is "closer" to the desired realm (further along the standard hierarchical path), in which case this step must be repeated with a Kerberos server in the realm specified in the returned TGT.
www.ietf.org /rfc/rfc1510.txt   (16435 words)

  
 Windows 2000 Kerberos Authentication
Kerberos is a protocol for authentication, not authorization.
When the Kerberos protocol is used for authentication, a list of SIDs identifying a security principal and the principal's group membership is transported to the local computer in the authorization data field of a session ticket.
In the public key extension to the Kerberos protocol, the initial AS Exchange is modified so that the KDC encrypts the user's logon session key with the public half of the user's key pair.
www.microsoft.com /technet/prodtechnol/windows2000serv/deploy/confeat/kerberos.mspx   (15126 words)

  
 Kerberos Users' Frequently Asked Questions 1.14   (Site not responding. Last check: 2007-10-21)
Kerberos is a network authentication system for use on physically insecure networks, based on the key distribution model presented by Needham and Schroeder.[3] It allows entities communicating over networks to prove their identity to each other while preventing eavsdropping or replay attacks.
Kerberos works by providing principals (users or services) with tickets that they can use to identify themselves to other principals and secret cryptographic keys for secure communication with other principals.[1] A ticket is a sequence of a few hundred bytes.
Kerberos rlogin uses a standard Kerberos exchange to prove the identity of the user to the remote host, after which it uses the /etc/passwd and a.klogin file to determine whether the user is authorized to log in.
www.faqs.org /faqs/kerberos-faq/user   (4591 words)

  
 [No title]
ABSTRACT This specification defines protocols, procedures, and conventions to be employed by peers implementing the Generic Security Service Application Program Interface (as specified in RFCs 1508 and 1509) when using Kerberos Version 5 technology (as specified in RFC 1510).
When generated by the Kerberos V5 mechanism, the Mechanism OID within the exportable name shall be that of the Kerberos V5 mechanism.
However, when the Kerberos V5 mechanism attempts to obtain initiating credentials for a service principal which are not available in a credentials cache, and the key for that service principal is available in a Kerberos V5 key table, the mechanism should use the service key to obtain initiating credentials for that service.
www.ietf.org /rfc/rfc1964.txt?number=1964   (4650 words)

  
 Kerberos: The Network Authentication Protocol
Downloads of MIT Kerberos source code and binaries are no longer restricted to the United States and Canada.
Kerberos is freely available from MIT, under copyright permissions very similar those used for the BSD operating system and the X Window System.
MIT provides Kerberos in source form so that anyone who wishes to use it may look over the code for themselves and assure themselves that the code is trustworthy.
web.mit.edu /kerberos/www   (620 words)

  
 Kerberos FAQ, v2.0 (last modified 8/18/2000)   (Site not responding. Last check: 2007-10-21)
Kerberos is freely available from MIT, under a copyright permission notice very similar to the one used for the BSD operating and X11 Windowing system.
Kerberos 5 uses ASN.1 and the DER to encode and decode all of the Kerberos protocol messages.
Kerberos principals can be disabled at will on the KDC and will then become unusable as soon as any cached tickets expire, on the order of hours, without any action by servers.
www.faqs.org /faqs/kerberos-faq/general   (17471 words)

  
 Reference.com/Encyclopedia/Kerberos (protocol)
The Protocol was named after the Greek mythological character Kerberos (or Cerberus), known in Greek Mythology as being the monstrous three-headed hound dog of Hades.
Windows 2000, Windows XP and Windows Server 2003 use Kerberos as their default authentication method.
As of 2005, the IETF Kerberos workgroup is updating the specifications http://www.ietf.org/html.charters/krb-wg-charter.html.
www.reference.com /browse/wiki/Kerberos_(protocol)   (1100 words)

  
 BYTE.com
Kerberos is a system that uses electronic tickets to authenticate a user to a server.
A ticket, which is good only for a single server and a single user during a certain period of time, is an encrypted message containing the name of the user and server, the user's network address, a time stamp, and a session key.
Kerberos encrypts this session key using the user's secret key (a one-way hash of the user's password).
www.byte.com /art/9406/sec8/art8.htm   (940 words)

  
 Security Protocol   (Site not responding. Last check: 2007-10-21)
Those that remain in the Department are: storage and use of the Great Seal, performance of protocol functions for the White House, drafting of certain Presidential proclamations, formally accepting notice of the president's resignation, and replies to public inquiries.
In addition, the Secretary performs such duties as the President is required, in accordance with the United States Constitution, relating to correspondence, commission, or instructions to U.S. ministers or consuls abroad, and to conduct negotiations with foreign representatives.
The Secretary has also served as principal adviser to the President in the determination and execution of U.S. foreign policy and in recent decades has become responsible for overall direction, coordination, and supervision of interdepartmental activities of the government of the United States overseas, except for certain military activities.
www.securityprotocol.info   (1678 words)

Try your search on: Qwika (all wikis)

Factbites
  About us   |   Why use us?   |   Reviews   |   Press   |   Contact us  
Copyright © 2005-2007 www.factbites.com Usage implies agreement with terms.