Microsoft Windows NT handles permission by using Kerberos, its security module in the kernel. Kerberos authenticates using security tokens and is generated every time a user is authenticated. One key advantage of using Kerberos and the security tokens is that the tokens are encrypted and therefore hard to decrypt without the correct key code. Default installation on the NT server is 56bit encryption but upgradeable to 128bit encryption.