Manualshelf

Kerberos Server Version 3.0 Release Notes

ManualsBrandsHP ManualsSoftwareHP-UX Kerberos Data Security Software
12345678910
HP’s Kerberos Server V 3.0 Release Notes
Kerberos Server Version 3.0 Benefits and Features
Chapter 18
Kerberos Server Version 3.0 Benefits and Features
The Kerberos Server is primarily a centralized network authentication system providing
security solutions to geographically dispersed organizations. Listed below are some of the key
features in Kerberos Server V 3.0.
Strong Authentication
Using the Kerberos Server, you can be assured that users, who logon to your network are
who they claim to be, to access the services, databases and applications on your
client-server network.
Strong authentication is the backbone of the Kerberos Server. With geographically located
organizations and resources disbursed across multiple platforms the need for users to
access multiple secure systems in a secure manner is greater than ever, as organizations
grow. HP’s Kerberos Server V 3.0, provides the unique ability to broker authentication
between one secure system and another. The server provides the base for strong
authentication.
In order to use the Kerberos Server network, each user and service, referred to as a
principal, in the network must prove its identity, referred to as authentication. This
means that each principal must be able to, on demand, provide authentication
information that only the principal should be aware of. Proper protection of this
authentication information is a critical aspect of enabling the best security that can be
provided.
Scalability
One of the primary benefits of the Kerberos Server is it is highly customizable and offers
the following advantages:
Multiple secondary security servers that will enable load balancing with automatic
incremental propagation, without any performance degradation.
Realms that can be organized according to types of users or services
Multithreading
This capability has been provided for servicing user requests in KDC. The Kerberos
Server backend uses B+ tree algorithm that is efficient, thus enhancing performance.
High Availability
This mechanism has been provided in this version of the Kerberos Server, by having the
parent process always monitor the server daemon. If the server daemon dies or crashes,
the parent process will automatically spawn a new server daemon.