Kerberos - authentication protocol

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

hello this is sunny welcome back today my topic is Kerberos in Greek mythology Kerberos is a dog with a three-headed but today I will not talk about the dog I will talk about an authentication protocol for client-server applications let me explain what it means almost computer systems your password is used to prove your identities but anyone knowing your password will effectively be you which is no good therefore is a necessary to prevent anyone from eavesdropping on your password on a secure Network at the same time is also necessary to provide a means of authenticating a user to use any service anytime this can be done with Kerberos which is a design for two purposes security and authentication here is how it works suppose a client wants to access a file server but with Kerberos the client must be verified through a trusted third party and if this third party is a key distribution center or KDC KDC includes two servers authentication server or a s and a ticket granting server or TGS step one the client sends a request to authentication server like my user ID is so-and-so and I need a ticket to a server something like this he's a request is a partially encrypted with a secret key his password keep in mind he never sings his password over the unsecured Network he just use it as an encryption key we yes gets the client request it will retrieve his password in the database based on user ID and use his password as a key to decrypt his request remember his password is a shared secret key between authentication server and the client this is how the user is verified after verifying the client authentication server sends back a ticket called ticket granting ticket or TDT encrypted with another secret key step 2 after client gasps TGT has sent this ticket to take hit granting server along with his request like I want to access the file server when the TGS gets the TGT it decrypts the ticket with the secret key shared with authentication server then TGS issues the client are talking which is encrypted with another secret key this a third secret key is shared between TGS and the file server thank the client saints came to the file server lost a step when the file server gets the token it encrypts the token with the secret key shared with the TGS the file server thing allows the client to use its resources for a certain period of time according to the token the token is like movie ticket with which a person can go to a theater to enjoy a certain movie at a certain kind on a certain day now you can see all communications between the different parties involved a secret key for example the client and authentication server share a secret key which is his password authentication server and tickler granting server share a secret key and ticket a grant from server and a file server share the same sacred key fearful Kerberos is one example of using probably the key encryption or symmetric key encryption if you want to know more about probably the key encryption please check out my another video and thank you very much and see you next time you [Music]

Info

Channel: Sunny Classroom

Views: 350,568

Rating: undefined out of 5

Keywords: networking, cybersecurity, security+, networking +, cyber threats, cyber defense, IoT, Wi-Fi security, kerberos, domain controller, windows active directory, Kerberos, authentication protocol, private key algorithm, sunny classroom

Id: _44CHD3Vx-0

Channel Id: undefined

Length: 6min 7sec (367 seconds)

Published: Sun Jul 09 2017