· Instead of client
sending password to application server:
–Request Ticket from authentication
server
–Ticket
and encrypted request sent to application server
· How to request tickets
without repeatedly sending credentials?
–Ticket
granting ticket(TGT)
