Smartcard/Kerberos integration

• University of Michigan computing environment is protected by Kerberos

  • So are MIT, CMU, Stanford, Cornell, ...

• Public key cryptography is not practical

  • (yet)

• Kerberos security limitations:

  • Lacks external encryption device
  • Lacks secure key storage
  • Passwords vulnerable to dictionary attack

• Smartcards can solve these problems

Previous slide

Next slide

Back to first slide

View graphic version