Please enable JavaScript.
Coggle requires JavaScript to display documents.
kerberos (History (the Internet Engineering Task Force (IETF) Kerberos…
kerberos
-
Protocol Description
-
Client Authentication
-
-
Once the client receives messages A and B, it attempts to decrypt message A with the secret key generated from the password entered by the user.
-
Client Service Request
Upon receiving messages E and F from TGS, the client has enough information to authenticate itself to the Service Server (SS)
The SS decrypts the ticket (message E) using its own secret key to retrieve the Client/Server Session Key
client decrypts the confirmation (message H) using the Client/Server Session Key and checks whether the timestamp is correct
-
Description
The KDC issues a ticket-granting ticket which is time stamped and encrypts it using the ticket-granting service's
This is done infrequently, typically at user logon
-
The client authenticates itself to the Authentication Server which forwards the username to a key distribution center