티켓 재요청에 따른 최적 Kerberos 메카니즘 모델링의 설계

The Design of an Optimum Kerberos Mechanism Modeling with Reusability of Ticket

A method for key exchange that provides a secure service is necessary to confirm the security and reliability of information for an active correspondence service between networks. The data security system, Kerberos, is a such an identity proving key exchange system which satisfies the two conditions of authentication and integrity. There is a method for granting authority to access the applied server through a re-authorization process whereby the user of a Kerberos system is issued a ticket granting ticket by accessing a remote server from the Kerberos server that is present in their domain. Therefore the correspondence between different Kerberos systems can become very complicated and there is a need for a new Kerberos exchange method that can simplify the steps of guaranteeing reliability and authentication between systems. This thesis proposes a new Kerberos exchange method that can simplify the authentication step between Kerberos systems and minimize correspondence overload by directly transmitting a ticket to the applied server without going through a Kerberos server in a remote domain during the Kerberos authentication process