Kerberos Question - Secret Key
I am reviewing my notes in prep for next week. I understand the process of Kerberos, but have a question regarding how Symmetric encryption is used securely. The Conrad book describes the operational steps where the KDC sends the client a session key encrypted with their secret key. How does the KDC know the secret key of principals (clients/services)?
My guess is that this is established prior during the building of the trust relationship such as how it is done with AD.
Hopefully I am the only one hitting the books on turkey day!
My guess is that this is established prior during the building of the trust relationship such as how it is done with AD.
Hopefully I am the only one hitting the books on turkey day!
Comments
-
Clm
Member Posts: 444 ■■■■□□□□□□
No your not i test Dec 11th so everyday counts
Check out this video https://www.youtube.com/watch?v=kp5d8Yv3-0c on kerberosI find your lack of Cloud Security Disturbing!!!!!!!!!
Connect with me on LinkedIn https://www.linkedin.com/in/myerscraig -
g33k3r
Member Posts: 249 ■■□□□□□□□□
That is a great video and answers my question and hunch. Among other things, the KDC maintains a copy of clients secret keys which is uses to authenticate the clients identity.
Thanks!! The coffee is brewing all day