Scribd Logo
Upload

Welcome to Scribd!

  • 3 views

    B 5 Ca 105

    Uploaded by

    Sarthak Sonawane FYCO 87
    Notes

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content

    You might also like

    B 5 Ca 105

    Uploaded by

    Sarthak Sonawane FYCO 87
    3 views39 pages
    Notes

    Original Title

    644602b5ca105

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Notes

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    3 views39 pages

    B 5 Ca 105

    Uploaded by

    Sarthak Sonawane FYCO 87
    Notes

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 39

    Kerberos is a computer-network authentication protocol that works on the

    basis of tickets to allow nodes communicating over a non-secure network


    to prove their identity to one another in a secure manner. (Massachusetts
    Institute of Technology
    •Step-1:
    User login and request services on the host. Thus user requests for
    ticket-granting service.

    •Step-2:
    Authentication Server verifies user’s access right using database
    and then gives ticket-granting-ticket and session key. Results are
    encrypted using the Password of the user.

    •Step-3:
    The decryption of the message is done using the password then
    send the ticket to Ticket Granting Server. The Ticket contains
    authenticators like user names and network addresses.

    •Step-4:
    Ticket Granting Server decrypts the ticket sent by User and Kerberos Limitations
    authenticator verifies the request then creates the ticket for •Each network service must be modified
    requesting services from the Server. individually for use with Kerberos
    •It doesn’t work well in a timeshare environment
    •Step-5: •Secured Kerberos Server
    The user sends the Ticket and Authenticator to the Server. •Requires an always-on Kerberos server
    •Stores all passwords are encrypted with a single
    •Step-6: key
    The server verifies the Ticket and authenticators then generate •Assumes workstations are secure
    access to the service. After this User can access the services. •May result in cascading loss of trust.
    •Scalability
    Ex.: AWS(Amazon Web Service), Google Cloud
    IPSec (IP Security) architecture uses two
    protocols to secure the traffic or data flow. These
    protocols are ESP (Encapsulation Security
    Payload) and AH (Authentication Header). IPSec
    Architecture includes protocols, algorithms,
    Domain of Integrity(DOI), and Key
    Management. All these components are very
    important in order to provide the three main
    services:
    •Confidentiality
    •Authenticity
    •Integrity

    DOI-It uses identifier which is fixed from


    encryption and authentication.tey concentrate on
    length of key.
    Key management- It is used to handle the key
    with 2 methods ::1.Automatic 2.Manually
    If manage key manually ipseckey command is
    used.or manage automatically it will manage by
    Internet key protocol (IPK) is used.
    IPsec AH
    IPsec ESP
    Disadvantage:: The main drawback of sending through an SMTP server is that it is insecure, it can be
    easily hacked. There are so-called “fake emails” that are messages sent using any address
    (for example billgates@microsoft.com) to any recipient.
    Another disadvantage is the server limitation

    You might also like