Kerberos is an authentication protocol that allows nodes communicating over an untrusted network to verify each other's identity. It uses symmetric encryption and a trusted third party called the Key Distribution Center (KDC) to authenticate users and services. The KDC issues credentials called tickets that grant access to trusted services across the network. Kerberos provides single sign-on by generating session keys that allow access to multiple services without re-authenticating. It is built into major operating systems and enables secure authentication over an insecure network like the internet.