Why are clocks used in a Kerberos authentication system? - ProProfs Discuss
Advertisement

Why are clocks used in a Kerberos authentication system?

Asked by Penelope, Last updated: Nov 21, 2021

+ Answer
Request
Question menu
Vote up Vote down

1 Answer

John Smith

John Smith

John Smith
John Smith

Answered Sep 08, 2016

To ensure tickets expire correctly. -the actual verification of a clients identity is done by validating an authenticator. the authenticator contains the clients identity and a timestamp. to insure that the authenticator is up-to-date and is not an old one that has been captured by an attacker, the timestamp in the authenticator is checked against the current time. if the timestamp is not close enough to the current time (typically within five minutes) then the authenticator is rejected as invalid. thus, kerberos requires your system clocks to be loosely synchronized (the default is 5 minutes, but it can be adjusted in version 5 to be whatever you want). reference: https://www.faqs.org/faqs/kerberos-faq/general/section-22.html
upvote downvote
Reply 

Advertisement
Advertisement
Search for Google images Google Image Icon
Select a recommended image
Upload from your computer Loader
Image Preview
Search for Google images Google Image Icon
Select a recommended image
Upload from your computer Loader
Image Preview
Search for Google images Google Image Icon
Select a recommended image
Upload from your computer Loader

Email Sent
We have sent an email to your address "" with instructions to reset your password.