Question: Consider the following authentication protocol based on a cryptographic hash H. The server stores z = H (w), where w is the user's password. To

Consider the following authentication protocol based on a cryptographic hash H.

Consider the following authentication protocol based on a cryptographic hash H. The server stores z = H (w), where w is the user's password. To log on, the user enters his password w. The server sends a random value r, and the client responds with h = H (H (w), r). The server accepts the user if h = H (z, r). Is this authentication scheme secure against both eavesdropping and server compromise? Why

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Authentication Protocol Analysis (3 marks) Multi-factor user authentication mechanisms require a user to possess multiple authenticatiorn factors, such as a knowledge factor ("something the user...

can someone solve this Modern workstations typically have memory systems that incorporate two or three levels of caching. Explain why they are designed like this. [4 marks] In order to investigate...

I have to create a program in C and I can't figure it out. The program has to read a source file. Please help. /******************************************************************** PROJECT: Glossary...

Alice designed a hash chain based authentication protocol as follows Step 1: The authentication server (i.e., verifier) chooses a cryptographic hash function h: {0,1}* {0,1} and releases it to the...

Let A, B be sets. Define: (a) the Cartesian product (A B) (b) the set of relations R between A and B (c) the identity relation A on the set A [3 marks] Suppose S, T are relations between A and B, and...

Developments in Technology Light is incident from air on the end face of a multimode optical fibre at angle of incidence as shown below. n n 1 2 The refractive indices of the core and cladding are...

Problem 5 - A password-based key agreement protocol (7 marks) Consider the following password-based key agreement protocol which allows a server (e.g. UCIT's central computer) and a registered client...

niap F0 = f(0) kilograms of fuel. It is released from an orbiter at time zero at height H0 = h(0) with an initial downwards velocity of zero. It must touch down at less than 1 metre per second. Its...

Define access control lists and capabilities, and discuss their relative strengths and weaknesses. [5 marks] Describe how the access control list mechanisms work in Unix. You have been asked to build...

You own one share of a non dividend-paying stock. Because you worry that its price may drop over the next year, you decide to employ a rolling insurance strategy, which entails obtaining one 3-month...

Analyze the global population data from a retailing perspective.

Childrens Toys and Gucci Products: In most of our development of consumer theory, we have assumed that tastes are independent of what other people do. This is not true for some goods. For instance,...

What does it mean If a firm has negative AFN?

Compared with half a century ago, adoption has become _ _ _ _ _ _ _ _ _ common, but it is more open and acceptabl e , so we probably discuss it _ _ _ _ _ _ _ . fill in the blanks more or much less or...

1. Have two observers witness the team in action as members debate important agenda items or strategies. Write detailed notes on who said what to whom, what was the reaction, and so forth. Once you...

3. What are potential solutions?

2. Have the team members identify the potential sources for conflict.