Kerberos Design

Kerberos Design

• User must identify itself once at the beginning of a workstation session (login session).
• Passwords are never sent across the network in cleartext (or stored in memory)
• Every user has a password and every service has a password.
• The only entity that knowns all the passwords is the Authentication Server.

Previous slide

Next slide

Back to the first slide

View Graphic Version