A potential vulnerability of the Kerberos authentication server is
A.
Single point of failure
B.
Asymmetric key compromise
C.
Use of dynamic passwords
D.
Limited lifetimes for authentication credentials
Explanation:
A: There are some issues related to the use of Kerberos. For starters, the security of the whole system depends on careful implementation: enforcing limited lifetimes for authentication credentials minimizes the threats of replayed credentials, the KDC must be physically secured, and it should be hardened, not permitting any non-Kerberos activity. More importantly, the KDC can be a single point of failure, and therefore should be supported by backup and continuity plans.Page 111.
answer please
SPOF : KDC can be single point of failure if not hardened or not provided with layered controls.