Chapter 5. Secure authentication with Kerberos

This chapter covers

Alternatives to password-based authentication
Kerberos and Java GSS API
WS-Security with Kerberos

In the previous chapter, we showed you how to claim your identity using passwords. We discussed two schemes: one that requires you to submit your password in clear text and another that helps you guard your password from snoopers—people who intend to steal it while it is on the wire. Both schemes required you to first register a username and password with your service providers. Like most users, you probably reuse the same username and password when registering with several services. This makes you susceptible to repurposing attacks. Administrators of a service you are registered ...

Get SOA Security now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

SOA Security by Ramarao Kanneganti, Prasad Chodavarapu

Chapter 5. Secure authentication with Kerberos

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly