NEW

2024 True Cost of a Security Breach

Products

Security

Performance

Network Detection and Response

RevealX NDR

Harness network visibility to reduce cyber risk and detect, investigate, and respond to threats.

What is NDR

RevealX Platform

Integrations

Deployment

Security Modules

Extend your network security

Intrusion Detection System

Forensics

Network Performance Management

RevealX NPM

Anticipate network disruptions, rapidly respond to incidents, and ensure availability across your enterprise.

Integrations

Deployment

Performance Modules

Extend your visibility

Forensics

Solutions

Security Use Cases

Performance Use Cases

Business Initiatives

Industry

Solutions

Ransomware Attacks

Detect ransomware at every step in the attack chain.

Advanced Threat Hunting

Proactively hunt for known and unknown threats on your network.

Threat Detection and Response

Discover how network visibility speeds threat detection, investigation, and response.

Network Forensics and Investigation

Accelerate incident response with 90 days of traffic look-back.

Security Hygiene

Get visibility into all devices on your network to strengthen security hygiene.

Cloud Workload Security

Defend critical cloud workloads from advanced threats with RevealX.

Operational Resilience

Build operational resilience at scale with powerful network performance monitoring.

Troubleshooting and Resolution

Move from alert to insight in three clicks or less.

Cloud Migration

Secure your cloud migration with application-layer visibility, asset discovery, and monitoring.

Cloud Workload Monitoring

Keep critical cloud workloads free from IT disruption.

Network Forensics

Accelerate root cause analysis with an extensible packet capture repository.

Zero Trust

Discover how RevealX supports a zero trust security architecture.

Multicloud & Hybrid Cloud Security

Enhance cloud security with agentless network detection and response.

XDR Strategy

Learn why NDR is essential to XDR strategies.

SOC Modernization

Maximize SOC efficiency and take threat response from reactive to proactive.

Digital Transformation

Seamlessly weave security and resiliency into the fabric of your digital transformation.

Financial Services

Seize business opportunities, accelerate IT transformation, maintain customer trust.

Education

Protect our kids and the education system from disruption.

Public Sector

Maintain the security and resiliency of vital public services.

Federal Civilian Agencies

Accelerate cyber modernization and meet national security mandates.

Defense and Intelligence

Achieve operational resilience and preserve the cyber advantage.

State and Local Government

Keep every digital interaction with constituents safe and secure.

Why ExtraHop

Partners & Integrations

Professional Services

Customer Support

Why ExtraHop

Customer Stories

News

Careers

Partners & Integrations

Our partners help extend the upper hand to more teams across more platforms.

Technology Partners

Discover how easily RevealX integrates with other leading security solutions.

Channel Partners

Explore the benefits of our partner program and become a partner.

Managed Service Providers

Gain the benefits of RevealX without having to manage it yourself.

Become a partner

Professional Services

Accelerate time to value with RevealX through our robust training and professional services offerings.

Service Credits

Explore our straightforward, credit-based packages for professional services.

Professional Services Integrations

Resident Experts

Augment your team with a dedicated or partially dedicated ExtraHop solutions architect.

Deployments

Let us deploy and configure your ExtraHop appliances.

Customer Support

Experience the dedication and passion of our world-class global support team.

Customer Community

Connect with peers and learn from ExtraHop engineers in our thriving community.

Technical Support

Exceptional support for our exceptional customers

Education Services

Explore our expert-delivered, live and virtual training and certification offerings.

Blog

Cybersecurity news and analysis, insights and perspectives from CISOs, threat briefings, and company announcements.

Explore all articles

Topics

C-Level

Security Threats

Company

Products

How-To

NDR

NPM

Ransomware

Zero Trust

Resources

Learn about the value and capabilities of RevealX through analyst reports, videos, and more.

Explore all resources

Content categories

Reports

Demos & Videos

Customer Stories

Webinars

Briefs

At-a-glance

Papers & E-books

Datasheets

Events

Network Protocols

Products
Solutions
Why ExtraHop
Blog
Resources

Solutions

Security Use Cases

chevron pointing down

Ransomware Attacks

Detect ransomware at every step in the attack chain.

Advanced Threat Hunting

Proactively hunt for known and unknown threats on your network.

Threat Detection and Response

Discover how network visibility speeds threat detection, investigation, and response.

Network Forensics and Investigation

Accelerate incident response with 90 days of traffic look-back.

Security Hygiene

Get visibility into all devices on your network to strengthen security hygiene.

Cloud Workload Security

Defend critical cloud workloads from advanced threats with RevealX.

Performance Use Cases

chevron pointing down

Operational Resilience

Build operational resilience at scale with powerful network performance monitoring.

Troubleshooting and Resolution

Move from alert to insight in three clicks or less.

Cloud Migration

Secure your cloud migration with application-layer visibility, asset discovery, and monitoring.

Cloud Workload Monitoring

Keep critical cloud workloads free from IT disruption.

Network Forensics

Accelerate root cause analysis with an extensible packet capture repository.

Business Initiatives

chevron pointing down

Zero Trust

Discover how RevealX supports a zero trust security architecture.

Multicloud & Hybrid Cloud Security

Enhance cloud security with agentless network detection and response.

XDR Strategy

Learn why NDR is essential to XDR strategies.

SOC Modernization

Maximize SOC efficiency and take threat response from reactive to proactive.

Digital Transformation

Seamlessly weave security and resiliency into the fabric of your digital transformation.

Industry

chevron pointing down

Financial Services

Seize business opportunities, accelerate IT transformation, maintain customer trust.

Education

Protect our kids and the education system from disruption.

Public Sector

Maintain the security and resiliency of vital public services.

Federal Civilian Agencies

Accelerate cyber modernization and meet national security mandates.

Defense and Intelligence

Achieve operational resilience and preserve the cyber advantage.

State and Local Government

Keep every digital interaction with constituents safe and secure.

Solutions

Network Protocols Glossary

What is a network protocol? Protocols are the rules of the road for how data exists and moves on the network. They allow many different systems and computers to communicate.

Download Protocol Fluency datasheet

Kerberos Protocol

What is Kerberos Protocol?

Kerberos is one of the oldest authentication protocols in existence and it has been heavily used by Microsoft for authentication purposes for decades. Developed at MIT in the 1980's, it became an IETF Standard in 1993. Kerberos, so named as a reference to the three-headed dog from ancient Greek mythology, uses a three way authentication mechanism that inserts a trusted third party called the Key Distribution Center (KDC) into the authentication process. This KDC breaks down into two logical services called the Authentication Server (AS) and the Ticket Granting Server (TGS). The fundamental concept is to eliminate the need to send passwords over the network; instead a hash of the user's password is sent and checked on both sides of the connection.

What is the purpose of Kerberos

While it is derived from symmetric key algorithms which use the same key for encryption as for decryption, Kerberos is capable of both symmetric and asymmetric cryptography.

Authentication is a complex process, but here is a simplified rundown:

1. Client enters login information.
2. The Kerberos client creates an encryption key and sends a message to the authentication server (AS).
3. The AS uses this key to create a temporary session key and sends a message to the ticket granting service (TGS).
4. TGS grants the client a ticket and server session key.
5. Client uses these to authenticate with the server and get access.