Question: Consider the following authentication protocol between a database client and server. Step 1: The user provides his/her username u and password p to the

Consider the following authentication protocol between a database client and server. Step 1: The user provides his/her username u and password p to the database client. Step 2: The database server generates a random number r, and sends to the database client. Step 3: The database client generates a random number re and sends to database server (u, re, SHA-3(Ts, Te. P)) for password verification. a) [4 marks] Explain how the protocol may prevent attacker from authenticating successfully to the database server without knowing the user's password. b) [8 marks] Explain the major security threats of this authentication protocol.

Step by Step Solution

★★★★★

3.41 Rating (151 Votes )

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock

a Explanation of Prevention of Unauthorized Authentication The provided authentication protocol employs a challengeresponse mechanism that helps prevent attackers from successfully authenticating to t... View full answer

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

A soccer goalkeeper takes a goal kick and the ball leaves his foot with a vertical velocity of 15 m/s and a horizontal velocity of 25 m/s. a. What is the resultant velocity of the ball? b. What is...

Case Study: Quick Fix Dental Practice Technology requirements Application must be built using Visual Studio 2019 or Visual Studio 2017, professional or enterprise. The community edition is not...

The following additional information is available for the Dr. Ivan and Irene Incisor family from Chapters 1-5. Ivan's grandfather died and left a portfolio of municipal bonds. In 2012, they pay Ivan...

Authentication Protocol Analysis (3 marks) Multi-factor user authentication mechanisms require a user to possess multiple authenticatiorn factors, such as a knowledge factor ("something the user...

There are two problems due this week (each worth 35 points) as follows. Case 5-1David L. Miller: Portrait of a White-Collar Criminal (page 144). In comprehensive paragraphs, answerrequirements 1?6....

According to the context, what is changing HR Professionals' ability to track talent costs?

1 . Suppose there are 1 0 0 0 users, and an attacker has a dictionary of 5 0 0 0 common passwords. An attacker has stolen the database of hashed passwords. a . If the users password in the database...

n 9 . 6 Eavesdropping and Server Database Reading we asserted that it is extremely difficult, without public key cryptography, to have an authentication scheme which protects against both...

It is extremely difficult, without public key cryptography, to havean authentication scheme which protects against both eavesdropping and server databasedisclosure. Consider the following...

Consider the following authentication protocol SKID2/SKID3 that uses symmetric cryptography. It assumes that Alice and Bob share a secret key K . SKID2 allows Bob to authenticate to Alice and...

Shown here is an income statement in the traditional format for a firm with a sales volume of 18,000 units $234,000 63,700 $170,300 Revenues Cost of goods sold ($11,500+$2.90/unit) Gross profit...

Astore, Inc. reported the following financial data for the most recent year end. Sales, $210,000; operating expenses $180,000; average operating assets, $200,000; total liabilities, $65,000. The...

Expansionary strategy happens when a financial power utilizes its systems to invigorate the economy. An expansionary strategy keeps up with transient loan costs at a lower than normal rate or builds...

A customer expressed a desire for a focused design. What is an effective approach to satisfying the voice of the customer? Provide an example.

The Signature Assignment Project is an integrative project focusing the application of the concepts/ideas from the course. you are to engage in an original integrative project presenting their...

Loyalty Program Comparison Chart Directions: Use your research to complete the comparison chart below. Rank each program as directed. Complete the short answer prompts to analyze your findings. Use...

7 7 6 . .

Juanita owns a home in Richardson, TX. She purchases a Homeowners Policy (HO-3) from Farm State Ins. Co. The policy provides $100,000 in liability coverage (coverage E) and $5,000 in Med Pay coverage...

Exhibit an nontrivial similarity relationship by letting t : C2 C2 act in this way, picking two bases B,D, and representing t with respect to them, ^T = RepB,B(t) and T = RepD,D(t). Then compute the...

How many months until the number of Fibonacci rabbit pairs passes a thousand? Ten thousand? A million?

Define addition and scalar multiplication operations to make the complex numbers a vector space over R.

4. Write a description about how the data were collected.

11. Researchers need to be very careful in their written work because their level of carelessness translates to lack of credibility for readers.

7. In the discussion section, the researcher provides the interpretation and implications of the results to answer the question, What do these results mean?