Kerberos

Basically, Kerberos comes down to just this:

• a protocol for authentication

• uses tickets to authenticate

• avoids storing passwords locally or sending them over the internet

• involves a trusted 3rd-party (KDC)

• built on symmetric-key cryptography

Pictorially:

Kerberos

Terms:

• AS-REQ: Authentication Service Request

• AS-REP: Authentication Service Response

• TGS-REQ: Ticket Granting Service Request

• TGS-REP: Ticket Granting Service Response

Reference

Explain like I’m 5: Kerberosroguelynn

Explain like I'm 5: Kerberos - roguelynn