Home Resources Security bibliography Symmetric key exchange protocols bibliography: Kerberos - An authentication service for computer networks
bibliography: Kerberos - An authentication service for computer networks
Authors: B. Clifford Neuman and Theodore Ts'o
Organisation:
Date: 1994
Keywords: symmetric key exchange, symmetric authentication, Kerberos
Electronic Publication: PDF
Abstract: Modern computer systems provide service to multiple users and require the ability to accurately identify the user making a request. In traditional systems, the user's identity is verified by checking a password typed during iogin; the system records the identity and uses it to determine what operations may be performed. The process of verifying the user's identity is called authentication. Password-based authentication is not suitable for use on computer networks. Passwords sent across the network can be intercepted and subsequently used by eavesdroppers to impersonate the user. While this vulnerability has been long known, it was recently demonstrated on a major scale with the discovery of planted password collecting programs at critical points on the Internet.
Notes: A good high-level introduction to the Kerberos protocol.
See: See Formal analysis on Keberos 5.
Citation: B. Clifford Neuman, Theodore Ts'o, “Kerberos: An Authentication Service for Computer Networks”, IEEE Communications, 32(9):33-38. September 1994.
Related work:

Last Updated on Sunday, 04 January 2009 11:05