Unique Feature of Kerberos

B.

Kerberos is a network authentication protocol that provides strong authentication for client/server applications by using secret-key cryptography. It was originally developed at MIT and has become an industry-standard authentication protocol.

The key feature that is unique to Kerberos is its use of a Ticket Granting Service (TGS) to issue tickets that can be used for authentication across different servers. This enables users to authenticate once and then access multiple services without having to repeatedly provide their credentials. This feature is commonly referred to as "single sign-on capability."

In contrast, RADIUS (Remote Authentication Dial-In User Service) and Diameter are both authentication, authorization, and accounting (AAA) protocols used for providing centralized authentication, authorization, and accounting for network access. These protocols rely on a centralized server to provide authentication services and do not offer the same single sign-on capabilities as Kerberos.

Additionally, RADIUS and Diameter use different mechanisms for authentication, such as shared secrets, digital certificates, or public key infrastructure (PKI). Kerberos, on the other hand, uses a trusted third-party server that issues tickets to clients, which are then presented to servers to authenticate the user.

Finally, the option D, "Kerberos uses XML for cross-platform interoperability," is incorrect. Kerberos does not use XML for cross-platform interoperability. Instead, it uses its own protocol for communication between clients and servers.

Therefore, the correct answer is C, "Kerberos provides single sign-on capability."