[cs615asa] Black Team - Week 3
Aimal Wajihuddin
awajihud at stevens.edu
Tue Feb 19 16:06:51 EST 2019
Hi everyone,
This week the black team’s chosen topic/article has to do with Kerberos and LDAP.
Although they are two different protocols, they are often used in conjunction for user management, as this article details.
LDAP, standing for Lightweight Directory Access Protocol, simply put, is an internet protocol that is used to look up information from a server in an organized fashion. Kerberos is an authentication technology that uses symmetric key cryptography and trusted third party authorization to verify a user’s identity. It is trusted as the industry standard nowadays.
Both individually and together, LDAP and Kerberos are designed to solve the problem of distributed authentication and authorization. The system detailed in the article essentially uses LDAP to centralize kerberos authentication to severely decrease the amount of accounts that need to be managed.
The article on DrDobbs is very detailed and pretty much goes through the entire process step by step if you guys are interested. All of the references we used are below.
References:
http://www.drdobbs.com/centralized-user-management-with-kerbero/199101983
https://www.gracion.com/server/whatldap.html
https://www.varonis.com/blog/kerberos-authentication-explained/
Regards,
Aimal
—
Aimal Wajihuddin
Computer Science ’19 | ITC - Student Network Technician
Stevens Institute of Technology
Cofounder | Stevens Esports
Secretary | Middle Eastern Student Association
Captain | Stevens CS:GO Team
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.stevens.edu/pipermail/cs615asa/attachments/20190219/845c42dc/attachment.html>
More information about the cs615asa
mailing list