Kerberos network authentication

Kerberos is a network authentication architecture that allows a single user to authenticate to a wide number of services through a trusted third-party intermediary.

The modern definition of Kerberos is version 5, also known as krb5. Older versions of the protocol are strongly deprecated, with a number of known exploitable flaws. To be clear: these are flaws in the specifications of older versions themselves, not in any particular implementation. They are not fixable without discarding the older specifications themselves, which is why we have krb5.

descriptions of how krb5 works

free implementations of krb5

Last modified 10 years ago Last modified on May 25, 2007, 11:42:56 AM