1. Kerberos:
Kerberos是一种计算机网络身份验证系统,用于在登录系统时对用户信息进行身份验证。 Kerberos基于对称密钥加密技术,并且依赖于可靠的第三方,并且在身份验证阶段使用私有密钥加密。开发了不同版本的Kerberos,以增强身份验证的安全性。 Kerberos通常在Microsoft产品(例如Windows 2000,Windows XP和更高版本的Windows)中实现。
2.安全套接字层(SSL):
SSL是一种加密协议,可在非安全网络中进行安全传输。 SSL需要证书,并且可以使用公共密钥加密。 SSL不直接使用任何端口,它可以在TCP协议上使用,并且可以通过TCP使用任何端口。 SSL在网络环境的不同应用程序中实现,例如网络浏览,消息传递,电子邮件和其他协议(例如FTP)。
Kerberos和SSL之间的区别
| S.No. | Kerberos | SSL |
|---|---|---|
| 1. | Kerberos is an open source software and offers free services. | SSL does not offer free service as it is patented. |
| 2. | Kerberos is generally implemented in microsoft products like Windows 2000, Windows XP and later windows. | SSL is implemented in web browsing, messaging and other protocols like FTP. |
| 3. | Kerberos depends on a reliable third party. | SSL is asynchronous as it depends on the certificate. |
| 4. | Kerberos works on the private key encryption. | While SSL works on the public key encryption. |
| 5. | Kerberos is best suited for the WWW. | SSL is appropriate and effective for the networked environments. |
| 6. | In kerberos, key cancellation is achieved by disabling any user on authentication server. | In SSL, revocation server control records of the bad certificate for key cancellation. |