You are on page 1of 9

UNIT - IV

NETWORK
SECURITY
KERBEROS
◆ Kerberos is an authentication service designed for
use in a distributed environment.
◆ Kerberos provides a trusted third-party
authentication service that enables clients and servers
to establish authenticated communication.
Requirements
• Secure
• Reliable
• Transparent
• Scalable
Kerberos Version 4
Ticket-Granting Server(TGS)
Kerberos version 4- Shortcomings
• Environmental shortcomings
– Encryption system dependence
– Internet protocol dependence
– Message byte ordering
– Ticket lifetime
– Authentication forwarding
– Inter realm authentication
• Technical deficiencies
– Double encryption
– PCBC encryption (Propagating Cipher Block Chaining)
– Session keys
– Password attacks