Kerberos

Kerberos is a computer network authentication protocol, which allows individuals communicating over a non-secure network to prove their identity to one another in a secure manner. It is also a suite of free software published by 'Massachusetts Institute of Technology' (MIT) that implements this protocol. Its designers aimed primarily at a client-server model, and it provides mutual authentication - both the user and the server verify each other's identity. Kerberos protocol messages are protected against eavesdropping and replay attacks.^[1]

Kerberos builds on symmetric key cryptography and requires a trusted third party. Extensions to Kerberos can provide for the use of public-key cryptography during certain phases of authentication.^[1]

• Kerberos [EN] @ Wikipedia
• Kerberos [DE] @ Wikipedia

Documentation

Request for Comments (RFC)

• 1510 - The Kerberos Network Authentication Service (V5) [EN]
• 3961 - Encryption and Checksum Specifications for Kerberos 5 [EN]
• 4120 - The Kerberos Network Authentication Service (V5) [EN]

References