Which of the following protects Kerberos against replay attacks?
A.
Tokens
B.
Passwords
C.
Cryptography
D.
Time stamps
Explanation:
To protect against replay attacks, the Kerberos authentication protocol uses the concept of an authenticator.
The authenticator includes the user identification information, a sequence number, and a timestamp. The
timestamp is used to help fight against replay attacks.
Incorrect Answers:
A: Kerberos uses time stamps, not tokens, to defend against replay attacks.
B: Kerberos uses time stamps, not passwords, to defend against replay attacks.
C: Kerberos uses time stamps, not cryptography, to defend against replay attacks.Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, New York, 2013, p. 212