Which of the following is addressed by Kerberos?
A.
Confidentiality and Integrity
B.
Authentication and Availability
C.
Validation and Integrity
D.
Auditability and Integrity
Explanation:
Kerberos is a trusted, third party authentication protocol that was developed under Project Athena at MIT. In
Greek mythology, Kerberos is a three-headed dog that guards the entrance to the Underworld. Using
symmetric key cryptography, Kerberos authenticates clients to other entities on a network of which a client
requires services.
Kerberos addresses the confidentiality and integrity of information. It does not directly address availability and
attacks such as frequency analysis.
Incorrect Answers:
B: Kerberos an authentication protocol. However, it does not address availability.
C: Kerberos does address integrity but it does not address validation.
D: Kerberos does address integrity but it does not address auditability.Krutz, Ronald L. and Russell Dean Vines, The CISSP and CAP Prep Guide: Mastering CISSP and CAP, Wiley
Publishing, Indianapolis, 2007, p. 78