TeamF1, Inc. Enabling Embedded Innovations

Enabling Embedded Innovations
Home Contact us Feedback Sitemap Products Support Services Company Newsroom
:: High Performance :: - Networking Security - IP Networking - Switching Solutions - Wireless Technologies
Products
Overview
SSecure Family
AuthAgent Family
Licensing
Related Information

RFC Support
RFC 4120
RFC 1964
RFC 4121
RFC 2743
RFC 2744
RFC 4556
RFC 3962
AuthAgent Kerberos
AuthAgent Kerberos
Embedded Kerberos V Authentication
AuthAgent Kerberos is an embedded implementation of the Kerberos V authentication protocol (RFC 4120) for client agents and network services running on embedded platforms. Being fully interoperable with Unix® Kerberos Key Distribution Centers (KDCs) and Microsoft® Active Directory Services in Windows® servers, it allows for seamless secure authentication in heterogeneous environments. With Kerberos becoming a preferred authentication mechanism for several network security protocols and a required part of several industry specifications, AuthAgent Kerberos provides a convenient way to add highly-secure authentication to embedded devices.
In a Nutshell

ds-3.1
Highlights Product Overview
AuthAgent Kerberos implements the protocol in RFC 4120 that specifies an authentication and encryption scheme that allows a principal to become "known" by an authenticating server and then to use that authentication to access systems and services on the network.

AuthAgent Kerberos provides the "magic sauce" required for network client software as well as network services running on embedded devices to easily be Kerberos-enabled ("kerberized") and communicate with centralized Kerberos Key Distribution Centers (KDCs) which store user and service authentication databases. This allows an organization to leverage its enterprise network Kerberos servers to authenticate services and clients running on embedded devices such as networking and storage equipment, connected smart appliances, and remotely managed industrial control applications.

Auth Agent Kerberos also provides GSS-API support for use as a generic mechanism for authentication in other security protocols and ticket caching functionality. It has been validated against KDCs in UNIX, Linux and Windows server environments, including Windows Active Directory Services and secure domain authentication.

AuthAgent Kerberos has been extensively validated on a variety of CPU architectures, which minimizes development and integration efforts. The AuthAgent Kerberos distribution includes sample kerberized clients and services (native mode and GSS API based) to use as reference implementations.

Features

Support for Kerberos V authentication.

Kerberos-enables network clients and services.

Allows single-logon convenience.

Provides for integrity and confidentiality of encrypted Kerberos messages.

Generates session key for authentication that may be used by application for session privacy.

Replay protection.

Ticket caching functionality.

Interoperable with Kerberos KDCs, services and clients on other platforms.

Validated against Microsoft Windows® Active Directory, Windows® Server and Linux®/UNIX® implementations.

Proven interoperable implementation of PKNIT.

IPv6 support

Can be used as a stand-alone module or add-on to network security solutions such as SSH and IPsec.

Support for PowerPC, MIPS, X86, ARM/XScale CPUs.

AuthAgent Kerberos Operation
With Kerberos becoming a preferred authentication mechanism for several network security protocols and a required part of several industry specifications, AuthAgent Kerberos provides a convenient way to add highly-secure authentication to embedded devices outside the enterprise as well.

Special Features

Includes caching functionality

Kerberos-enables (Kerberizes) both - network clients and services

Enhanced memory management & partition support

Multi-tasking support
 

Contact  |  Products  |  Support  |  Services  |  Company  |  Newsroom  |

© 2007 TeamF1, Inc.

Home Contact us Feedback Sitemap Top