Kerberos Interview Question-Answer

Q.1 Which cryptography technique uses different keys to encrypt and decrypt?

       A. Symmetric encryption

       B. Asymmetric encryption

       C. Both symmetric and asymmetric encryption

       D. None of the options

Ans : Asymmetric encryption


Q.2 Which of the following is not an objective of Kerberos?

       A. Passwords should be stored in the user’s machine

       B. Passwords should never travel over a network

       C. Passwords should be stored in encrypted format

       D. None of the options

Ans : Passwords should be stored in the user’s machine


Q.3 Kerberos was developed at ___________.

       A. MIT

       B. Oxford

       C. Stanford

       D. None of the options

Ans : MIT


Q.4 Kerberos realm names are case sensitive.

       A. True

       B. False

Ans : True


Q.5 Authentication checks if a user has rights to access content.

       A. True

       B. False

Ans : False


Q.6 Username and password are used for _____________.

       A. encryption

       B. authentication

       C. authorization

       D. None of the options

Ans : authentication


Q.7 Which of the following mechanism is used to share data securely?

       A. Encryption

       B. Authentication

       C. Authorization

       D. None of the options

Ans : Encryption


Q.8 A user is said to be a part of a realm in which of the following scenarios?

       A. The user shares a secret key with the authentication server of the realm

       B. User has a domain name

       C. All the above

Ans : The user shares a secret key with the authentication server of the realm


Q.9 The main flaws in traditional authentication systems that lead to the creation of Kerberos was?

       A. Passwords are stored at the service end and may not be encrypted

       B. Insecure public network

       C. Passwords travel over unknown networks

       D. All the above

Ans : All the above


Q.10 Authentication checks for user identity.

       A. True

       B. False

Ans : True


Q.11 Encryption can be reversed.

       A. True

       B. False

Ans : True


Q.12 Which of the following is an objective of Kerberos?

       A. Passwords are stored in the user’s machine

       B. Only KDC can handle authentication

       C. All the above

Ans : Only KDC can handle authentication


Q.13 Kerberos was developed as a part of which of the following project?

       A. MIT Kerb

       B. Athena

       C. Kerb-security

       D. Marina

Ans : Athena


Q.14 Which cryptography technique uses the same key to encrypt and decrypt?

       A. Asymmetric encryption

       B. Symmetric encryption

       C. Both symmetric and asymmetric encryption

       D. None of the options

Ans : Symmetric encryption


Q.15 The key used to encrypt a TGT is shared between?

       A. Client and Application Server

       B. Ticket Granting Server and Authentication Server

       C. Application Server and Service

       D. None of the options

Ans : Ticket Granting Server and Authentication Server


Q.16 The session key in a TGT is shared between?

       A. Client and Application Server

       B. Service and Client

       C. Authentication Server and Ticket Granting Server

       D. Client and Ticket Granting Server

Ans : Authentication Server and Ticket Granting Server


Q.17 Which component of the KDC issues service tickets?

       A. Authentication Server

       B. Application Server

       C. Ticket Granting Server

       D. Database

Ans : Authentication Server


Q.18 Tickets are issued by which of the following?

       A. Clients

       B. Services

       C. KDC

       D. None of the options

Ans : KDC


Q.19 A client sends a TGT to?

       A. Service

       B. Ticket Granting Service

       C. Application Server

       D. Authentication Server

Ans : Authentication Server


Q.20 A service principal entry should contain the hostname.

       A. True

       B. False

Ans : True


Q.21 A client can open and view a service ticket.

       A. True

       B. False

Ans : True


Q.22 Which of the following ticket is sent by the authentication server to the client?

       A. Service Ticket

       B. TGT

       C. Both TGT and Service Ticket

       D. None of the options

Ans : TGT


Q.23 Which of the following does Kerberos use as password salt?

       A. Principal

       B. Service name

       C. User name

       D. None of the options

Ans : Principal


Q.24 Which of the following method is used to hash a user’s password+salt in Kerberos?

       A. XMZ

       B. string2Key

       C. SHA-256

       D. RSA

Ans : string2Key


Q.25 Authentication request will not contain this.

       A. service ip

       B. client principal

       C. service principal

       D. IP list

Ans : IP list


Q.26 Which of the following information is not stored in the KDC database?

       A. User ID

       B. Principal

       C. Encryption Key

       D. Password Expiry

Ans : Principal


Q.27 A principal can be associated with which of the following?

       A. User

       B. Host

       C. Service

       D. All the above

Ans : All the above


Leave a Comment