Redmond Magazine

Kerberos Authentication 101: Understanding the Essentials of the Kerberos Security Protocol

While Windows IT professionals deal with security on a daily basis, very few understand the under-the-hood protocol, Kerberos. Kerberos is a security protocol in Windows introduced in Windows 2000 to ...
ZDNet

Windows, Linux distros, macOS pay for Kerberos 21-year-old 'cryptographic sin'

A bypass bug present in the Kerberos cryptographic authentication protocol for 21 years has now been fixed in patches from Microsoft, Samba, Fedora, FreeBSD, and Debian. The discoverers of the ancient ...
Bleeping Computer

21-Year-Old Bug in Kerberos Protocol Gets Patch in Windows, Linux

Two implementations of the Kerberos authentication protocol received patches this week against a vulnerability that allowed a threat actor to bypass authentication procedures. The vulnerability was ...
CSOonline

Don’t count on Kerberos to thwart pass-the-hash attacks

Several readers responded to my previous post on pass-the-hash attacks, asking if Kerberos authentication versus LANManager, NTLM, or NTLMv2 was an effective defense. It’s a good question, one that I ...
IT News For Australia Business

OS makers plug decades-old critical Kerberos crypto bug

A bug in the implementations of a cryptographic protocol left popular operating systems vulnerable to authentication bypass for 21 years, researchers have discovered. The protocol, Kerberos, is used ...