Notes 20110328 CIS 6650 Computer Security - Dragan's Talk

From SnOwy - Ed's Wiki Notebook

Key Authentication

• normally not found in symmetric key cryptography
  • channel to transmit key should be secure
• Kerberos
  • a network authentication protocol
  • ensures that both the client and the server are authenticated
  • developed for symmetric keys; however, capable of conveying and authenticating asymmetric keys too
  • was banned from being exported by the US -- contains DES
• versions
  • Heimdal Kerberos -- identical behaviour of Kerberos -- full compatibility, making the ban irrelevant
  • Active Directory
  • TrustBroker
  • ShiShi
• how does it work?
  • client sends text to Key Distribution Center
• see notes