Difference between Kerberos and NTLM
1. Kerberos :
Kerberos is a ticket based authentication system which is used for the authentication of users information while logging into the system. Kerberos is based on symmetric key cryptography and depends on a reliable third party and works on the private key encryption during phases of authentication. Different versions of Kerberos are developed for enhancing security in the authentication. Kerberos is generally implemented in Microsoft products like Windows 2000, Windows XP and later windows versions.
2. NTLM :
NTLM (New technology LAN Manager) is a proprietary Microsoft authentication protocol. NTLM is also based on symmetric key cryptography technology and needs resource servers to provide authentication, integrity, and confidentiality to users. NTLM does not support delegation of authentication and two factor authentication. NTLM is usually implemented in earlier windows versions such as Windows 95, Windows 98, Windows ME, NT 4.0.
Attention reader! Don’t stop learning now. Get hold of all the important CS Theory concepts for SDE interviews with the CS Theory Course at a student-friendly price and become industry ready.
Difference between Kerberos and NTLM :
|1.||Kerberos is an open source software and offers free services.||NTLM is the proprietary Microsoft authentication protocol.|
|2.||Kerberos supports delegation of authentication in multi-tier application.||NTLM does not support delegation of authentication.|
|3.||Kerberos supports two factor authentication such as smart card logon.||NTLM does not provide smart card logon.|
|4.||Kerberos has the feature of mutual authentication.||NTLM does not have the feature of mutual authentication.|
|5.||Kerberos provides high security.||While NTLM is less secured as compared to kerberos.|
|6.||Kerobos is supported in Microsoft Windows 2000, Windows XP and later windows versions.||NTLM is also supported in earlier windows versions such as Windows 95, Windows 98, Windows ME, NT 4.0.|