摘要
认证技术是解决网络安全问题的一个关键性技术 ,国际上正对建立 CA认证中心展开激烈的讨论 ,许多实际问题正在研究之中。 Kerberos认证服务给我们提供了研究认证技术的很好的范例 ,本文对 Kerberos认证服务中的协议 (消息交换 )做了详尽的研究和分析 ,希望能帮助人们对网络认证有更深的了解。
Kerberos provides a means of verifying the identit ies of principals on an open (unprotected) network.This is accomplished without relying on authentication by the host operating system, without basing trust on host addresses, without requiring physical security of all the hosts on the netw ork, and under the assumption that packets traveling along the network can be re ad, modified, and inserted at will. Kerberos is a good example for us to study C A. The paper analyses all kinds of protocols of Kerberos in details in order to help people to deeply understand it.
出处
《计算机与现代化》
2001年第5期35-39,43,共6页
Computer and Modernization
