Encyclopedia > Kerberos

  Article Content

Kerberos

In Greek mythology, Kerberos, also called Cerberus, is the three-headed dog that guards the entrance to Hades.


Kerberos is also a computer network authentication protocol designed for use on insecure networks (the Internet for example), based on the key distribution model of Needham and Schroeder[?]. It allows individuals communicating over a network to prove their identity to each other while also preventing evesdropping or replay attacks, and provides for detection of modification and the prevention of unauthorized reading.

The protocol can be specified as follows in security protocol notation, where Alice is authenticating herself to Bob using a server S:

<math>A \rightarrow S: A,B</math>

<math>S \rightarrow A: \{T_S, L, K_{AB}, B, \{T_S, L, K_{AB}, A\}_{K_{BS}}\}_{K_{AS}}</math>

<math>A \rightarrow B: \{T_S, L, K_{AB}, A\}_{K_{BS}}, \{A, T_A\}_{K_{AB}}</math>

<math>B \rightarrow A: \{T_A + 1\}_{K_{AB}}</math>

We see here that the security of the protocol relies heavily on Timestamps being reliable indicators of the freshness of a communication (see the BAN logic).

Kerberos is freely available from MIT, under copyright permissions similar those used for BSD. There is an RFC for Kerberos 5: RFC 1510.



All Wikipedia text is available under the terms of the GNU Free Documentation License

 
  Search Encyclopedia

Search over one million articles, find something about almost anything!
 
 
  
  Featured Article
Great River, New York

... 64, and 12.7% who are 65 years of age or older. The median age is 39 years. For every 100 females there are 104.2 males. For every 100 females age 18 and over, th ...

 
 
 
This page was created in 26.8 ms