Which of the following is addressed by Kerberos?

A.
Confidentiality and Integrity

B.
Authentication and Availability

C.
Validation and Integrity

D.
Auditability and Integrity

Explanation:
Kerberos is a trusted, third party authentication protocol that was developed under Project Athena at MIT. In
Greek mythology, Kerberos is a three-headed dog that guards the entrance to the Underworld. Using
symmetric key cryptography, Kerberos authenticates clients to other entities on a network of which a client
requires services.
Kerberos addresses the confidentiality and integrity of information. It does not directly address availability and
attacks such as frequency analysis.
Incorrect Answers:B: Kerberos an authentication protocol. However, it does not address availability.
C: Kerberos does address integrity but it does not address validation.
D: Kerberos does address integrity but it does not address auditability.

Krutz, Ronald L. and Russell Dean Vines, The CISSP and CAP Prep Guide: Mastering CISSP and CAP, Wiley
Publishing, Indianapolis, 2007, p. 78