answersLogoWhite

0

Subjects>Electronics>Computers

Why is kerberos scalable?

User Avatar

Anonymous

15y ago
Updated: 11/6/2022

Features added in the current version of Kerberos Version5 are designed to allow inter-network authentication (in Kerberos terminology, referred to as "cross-realm" authentication). Recent proposals have included using public-key cryptography for both initial authentication of clients (TGT) and for cross-realm authentication. Such changes will make it more feasible for Kerberos to scale to larger sets of networks, but the question is far from resolved.

  • Version 5 added support for forwardable, renewable, and postdatable tickets. These accommodate long running processes and processes which need to run automatically in the future, in addition to allowing users to use their credentials on a machine other than the one they logged in on.
  • Kerberos tickets can now contain multiple IP addresses and addresses for different types of networking protocols. This allows the use of multi-homed machines
  • Replay caches keep track of recently issued tickets and do not allow the same ticket to be used twice in a row. This cuts down on the ability of attackers to hijack cached tickets before they expire.
  • There is now support for transitive cross-realm authentication which removes the requirement that each pair of realms that wish to allow authentication must share a secret. In large networks consisting of many realms, the number of secrets can become quite large and is not scalable. Instead, transitive cross-realm authentication allows a path between secret-sharing realms to be specified so that credentials from the desired realm can be earned by following this path
User Avatar

Wiki User

15y ago

What else can I help you with?

Related Questions

When was Kerberos Productions created?

Kerberos Productions was created in 2003.

Is Kerberos a private key encryption?

Kerberos is an example of a private key encryption service.

What is the meaning of the keyword "Kerberos" in Greek?

In Greek mythology, "Kerberos" refers to the three-headed dog that guards the entrance to the underworld.

What is kerberos realms?

A full service kerberos environment consisting of kerberos server and clients and application servers requires kerberos server to maintain a database containing users name and their hashed password and realm sets up aboundary within which authentication server can authenticate users. In general we can say realm is set of nodes sharing a common database.

A subset of users in kerberos is referred to as a?

Realm

Does kerberos require port based authentication?

No

What ports are used by kerberos?

TCP Port 88

How long does Kerberos authentication last?

5 minutes

What is the default protocol used by windows vista?

Kerberos.

Do you use kerberos as an authentification method even when active directory forests are independent?

Yes the kerberos the std protocol used by AD earlier version used NTLM

Which version of Kerberos currently used by windows?

version 5.0

What do you understand by Authentication and Encryption in the context of system security?

kerberos

Trending Questions
What does DNS distribute the responsibility of? What is 18kt GB? How good is the Linksys e4200? How many different types of itunes gift cards are there? What is the function of Straight through? How do you re-set water level in the new washing Machines? Job sequence in operating system? How can you put a short cut for print on the toolbar? Describe at least two ways in which storage complements memory? How long does it take to take money out of a CD Account if I need it for an emergency? How General register organization in CPU? What is the use of adding header and trailer to the frames? What is the difference between software industry and IT industry? Which is better ios or android? Does your router go in the WAN or LAN port? How do you change look and feel of ms office to older version? How I change my worksheet background color in Excel? Is there any command in cmd which works same as file2cable command in ubuntu? What is an included IF function in which the action to be taken for the true or false case includes yet another IF function? Where can one find a font maker?

Resources

Leaderboard All Tags Unanswered

Top Categories

Algebra Chemistry Biology World History English Language Arts Psychology Computer Science Economics

Product

Community Guidelines Honor Code Flashcard Maker Study Guides Math Solver FAQ

Company

About Us Contact Us Terms of Service Privacy Policy Disclaimer Cookie Policy IP Issues
Answers Logo
Copyright ©2025 Answers.com | Lunias Media Inc. All Rights Reserved. The material on this site can not be reproduced, distributed, transmitted, cached or otherwise used, except with prior written permission of Answers.