Challenge-response - Prof. Ravi Sandhu

Download Report

Transcript Challenge-response - Prof. Ravi Sandhu

CHALLENGE-RESPONSE
AUTHENTICATION
Prof. Ravi Sandhu
STRONG AUTHENTICATION
CHALLENGE RESPONSE
NETWORK
WORK
STATION
HOST
User ID
Challenge
Response
© Ravi Sandhu
2
CHALLENGE RESPONSE
Secret Key
Challenge
Encrypt
Response
© Ravi Sandhu
3
CHALLENGE RESPONSE
Secret Key
Challenge
HMAC
Response
© Ravi Sandhu
4
TIME SYNCHRONIZED
NETWORK
WORK
STATION
HOST
User ID
One Time Password
© Ravi Sandhu
5
TIME SYNCHRONIZED
Secret Key
Time
HMAC
One Time Password
© Ravi Sandhu
6
PUBLIC KEY SIGNATURE
BASED
Private Key
Challenge
Sign
Response=signed(challenge)
© Ravi Sandhu
7
PUBLIC KEY SIGNATURE
BASED
Private Key
Time
Sign
Response=signed(Time)
© Ravi Sandhu
8
PUBLIC KEY ENCRYPTION
BASED
Private Key
Challenge=Encrypt(Response)
Decrypt
Response
© Ravi Sandhu
9
PUBLIC KEY ENCRYPT
BASED
Private Key
Time
Decrypt
verify
Encrypt(Decrypted(Time))
Response=Decrypted(Time)
© Ravi Sandhu
10