KDCs - Infinite Lexicon - Infinite Lexicon

KDCs

KDCs, or Key Distribution Centers, are a central component of the Kerberos authentication protocol. They are responsible for issuing tickets that prove a user's identity to network services. A KDC comprises two logical services: the Authentication Service (AS) and the Ticket Granting Service (TGS). The KDC also maintains a database of principals (users, services) and their secret keys, typically protected and backed by a directory service.

Operation begins when a client authenticates to the AS using credentials (often a password). The AS verifies

Security and deployment considerations include recognizing that KDCs are high-value targets and should be hardened, audited,

History and scope: Kerberos was developed at MIT in the 1980s and has since become a standard

a

a

a

re-authenticate

synchronization

implementations

synchronization