kerberos協議是什麼
Kerberos 是一種網絡認證協議,其設計目標是通過密鑰系統為客户機, 服務器應用程序提供強大的認證服務。接下來小編為大家整理了kerberos協議是什麼,希望對你有幫助哦!
Kerberos was developed at MIT in 1998s. It was named after the three-headed watchdog in classical Greek mythology that guards the gates to Hades. The name is apt because Kerberos is a three-way process, depending on a thrid-party service called the Key distribution center(KDC)to verify one computer's identity to another and to set up encryption keys for a secure connection between them. Basically, kerberos works because each computer shares a secret with the KDC, which has two components: a Kerberos authentication server and a ticket-granting server. If KDC doesn't know the requested target server, it refers the authentication transaction to another KDC that does. Kerberos is a network authentication protocol that allows one computer to prove its identity to another across an insecure network through an exchange of encrypted messages. Once identity is verified, kerberos provides the two computer with encryption keys for a secure communication session. Kerberos authenticates the identity and encrypts their communications through secret-key cryptography.
kerberos協議是80年代由MIT開發的一種協議。其命名是根據希臘神話中守衞冥王大門的長有三頭的看門狗做的。定名是貼切的,因為KERBEROS是一個三路處理方法,根據稱為密匙分配中心(KDC)的第三方服務來驗證計算機相互的身份,並建立密匙以保證計算機間安全連接。KERBEROS協議基本上是可行的,因為每台計算機分享KDC一個祕密,KDC有兩個部件:一個KEBEROS 認證服務器和一個授票服務器。如果KDC不知請求的目標服務器,則求助於另一個KDC完成認證交易。KERBEROS 是一種網絡認證協議,允許一台計算機通過交換加密消息在整個非安全網絡上與另一台計算機互相證明身份。一旦身份得到驗證,KERBEROS協議給這兩台計算機提供密匙,以進行安全通訊對話。KERBEROS 協議認證試圖等錄上網用户的身份,並通過使用密匙密碼為用户間的通信加密。
