Skip to main content
Springer Nature Link
Log in

Kerberos

  • Reference work entry
Encyclopedia of Cryptography and Security

  • 369 Accesses

Synonyms

Project athena

Related Concepts

Single Sign-On; Symmetric Cryptography

Definition

Kerberos is a single sign-on system for distributed environments that allows a centralized entity running on behalf of a principal to prove its identity to a verifier (another principal) in an environment where principals do not trust each other. It uses symmetric key cryptography and provides scalability (works in large, heterogeneous environments), transparency (works in the background), reliability (if redundancy is provided), and security (provides authentication and confidentiality) in an end-to-end fashion. In fact, it is a de facto standard for heterogeneous networks.

Background

Kerberos was designed in the mid-1980s as part of MIT’s Project Athena. It is based on the Needham–Schroeder trust model.

Theory

Main ComponentsKerberos distribution center (KDC) is the most important entity in a Kerberos environment. KDC holds all principals’ (users, applications, or services) secret keys and is...

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Recommended Reading

  1. Bryant B (1988) Designing an authentication system: a dialog in four scenes. http://web.mit.edu/Kerberos/dialogue.html

  2. Neuman CB, Ts’o T (1994) Kerberos: an authentication service for computer networks. http://gost.isi.edu/publications/kerberos-neuman-tso.html

  3. Bellovin SM, Merritt M (1991) Limitations of the kerberos authentication system. In: Proceedings of the winter 1991 USENIX conference, Dallas, pp 253–267

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Department of Computer Science, University of California, One Shields Ave, 95616, Davis, CA, USA

    Mr. Radmilo Racic

Authors
  1. Mr. Radmilo Racic
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Mathematics and Computing Science, Eindhoven University of Technology, 5600 MB, Eindhoven, The Netherlands

    Henk C. A. van Tilborg

  2. Center for Secure Information Systems, George Mason University, Fairfax, VA, 22030-4422, USA

    Sushil Jajodia

Rights and permissions

Reprints and permissions

Copyright information

© 2011 Springer Science+Business Media, LLC

About this entry

Cite this entry

Racic, R. (2011). Kerberos. In: van Tilborg, H.C.A., Jajodia, S. (eds) Encyclopedia of Cryptography and Security. Springer, Boston, MA. https://doi.org/10.1007/978-1-4419-5906-5_113

Download citation

Publish with us

Policies and ethics