Which of the following is NOT true of the Kerberos protocol?

Which of the following is NOT true of the Kerberos protocol?

Which of the following is NOT true of the Kerberos protocol?

A.
Only a single login is required per session.

B.
The initial authentication steps are done using public key algorithm.

C.
The KDC is aware of all systems in the network and is trusted by all of them

D.
It performs mutual authentication

Explanation:
Kerberos uses shared secret keys and tickets for the initial authentication, not a public key algorithm.
Incorrect Answers:
A: Kerberos is an example of a single sign-on system for distributed environments, and therefore only requires
a single login per session.
C: the foundation of Kerberos security is trust that clients and services have in the integrity of the KDC.
D: Kerberos provides mutual authentication in that both the user and the server verify each other’s identity.References:
Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, 2013, pp. 209-213
https://en.wikipedia.org/wiki/Kerberos_(protocol)



Leave a Reply 0

Your email address will not be published. Required fields are marked *

17 − 14 =