Anda di halaman 1dari 10

AUTHENTICATION -1

 ONE WAY AUTHENTICATION


 PASSWORD BASED AUHTENTICATION
 CERTIFICATION BASED AUHTENTICATION
 MUTUAL AUHTENTICATION
 DICTIONARY ATTACKS
1.PASSWORD BASED AUHTENTICATION

(A) Communicating password

(B) Communicating hash of password


One way authentication using challenge-response protocol

A B A B A B A B

(1) “A” (1) “A” (1) “A”


(1) “A”

R (2) R (2) R (2) Epw(R)(2)

(3) h(pw[]R) (3)Epw(R) (3) R


(3)f(pw,R)

(a) (b) (c) (d)


2. Certification –based one way-authentication

A B A B
Certificate Certificate
(1) chain (1) chain

R (2) EA pu(R) (2)

(3) EA.pr(R) (3) R

(a) (b)
MUTUAL AUTHENTCATION
SHARED SECRET-BASED AUTHENTICATION
C B A

(1) “A”,RA

EK(RA),RB (2)

A B A B
(1) “B”,RB (1) “A”,RA
(1) “A”,RA

EK(RA),Ek(RB) (2)
Ek(RA),RB (2) (2)

(3)
(3) EK,(RB) (3) EK(RA),RB

(a) Flawed protocal (b)Parallel session attack (c) Corrected protocal