Question: In the mutual authentication in the Needham/Schroeder protocol upon which Kerberos is based, the authenticator contained only an encrypted timestamp. The protocol is that Alice

In the mutual authentication in the Needham/Schroeder protocol upon which Kerberos is based, the authenticator contained only an encrypted timestamp. The protocol is that Alice sends Bob the authenticator, and then Bob must decrypt the authenticator, add one to the value inside, re-encrypt it, and send it back to Alice. Why was it necessary for Bob to increment the value before re-encrypting it and sending it to Alice? Why isn't it necessary in Kerberos V5, in the AP_REP message? In Kerberos V4, it is the checksum field that is extracted and incremented. Would it have been just as secure in V4 for Bob to send back the contents of the checksum field encrypted and not incremented?

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Radio Frequency Identification (RFID) bas been widely adopted for object identification. An RFID system comprises three esential oponents, namcly RFID tags, readers and a backend server. An RFID tag...

Using the above information, please analyze each protocol (i to v) sent from Alice to Bob in terms of what the protocol is doing, and its security level and/or threats, and remedies to secure them....

Choose the correct answer. One of the ways to compromise Lamport's one time au- thentication scheme is as follows. i. Capture an authentication message for one round, do not allow this message to...

The IT department at a software development company is setting up a VPN for employees. The tunneling protocol the department uses must encrypt network connections at the packet level. The connection...

. Mutual Authentication using Symmetric Key [ 1 6 Points ] ( a ) Consider the following mutual authentication protocol, where KAB is a shared symmetric key. Give two different attacks that Trudy can...

Consider the following challenge-response mutual authentication protocol between Alice, a client, and Bob, a stateless server that does not remember values from a previous round of authentication...

Alice to Bob - I'm Alice, {[T, Kslalice}Bob Bob to Alice - {[T +1, Ks]Bob}Alice Where Tis the Timestamp, Ks is the session Key. {...} is encryption with specified PUBLIC key. [...] is encryption with...

Trudy Security Handshake Pitfalls Mutual Authentication Password Guessing Another weakness: Trudy can mount an offline password-guessing without needing to eavesdrop To fix it, make sure the...

In this problem we will perform a security analysis of a simple mutual authentication protocol between Alice and Bob. Assume Alice and Bob have a pre - shared secret key k a b . In this protocol H...

Refer to Exercise 16.9. Use two statistics to measure the strength of the linear association. What do these statistics tell you?

Why does financial statement analysis typically rely heavily on examining financial ratios as opposed to absolute numbers (for example, net income-to-sales as opposed to just net income)?

The main risk faced by an individual who enters a forward contract on S&P index ( i . e . , using the forward to hedge against the risk of buy - and - hold the S&P index ) is that :

Seved Help 14 Wisconsin Snowmobile Corp. is considering a switch to level production Cost efficiencies would occur under level production, and aftertax costs would decline by $31,500, but inventory...

If the tax rate is 40 percent, compute the beforetax real interest rate and the after-tax real interest rate in each of the following cases. a. The nominal interest rate is 10 percent and the...

Assume that the reserve requirement is 20%. Also assume that banks do not hold excess reserves and there is no cash held by the public. The Federal Reserve decides that it wants to expand the money...

It is often suggested that the Federal Reserve try to achieve zero inflation. If we assume that velocity is constant, does this zero-inflation goal require that the rate of money growth equal zero?...