Replicated KDCs explains that the KDC database isn't encrypted as a unit. Rather each user's master key
Fantastic news! We've Found the answer you've been seeking!
Question:
Replicated KDCs explains that the KDC database isn't encrypted as a unit. Rather each user's master key is independently encrypted with the KDC master key. Suppose replication were done with a simple download (i.e., no cryptographic integrity check is performed). How could a bad guy who is a principal registered with a KDC impersonate Alice, another principal registered with that KDC? Assume he can see and modify the KDC database in transit, but that he does not know the KDC master key.
Related Book For
Posted Date: