Otway-rees

Otway-Rees is a computer network authentication protocol designed for use on insecure networks (the Internet for example). It allows individuals communicating over a network to prove their identity to each other while also preventing evesdropping or replay attacks, and provides for detection of modification and the prevention of unauthorized reading. The protocol can be specified as follows in security protocol notation, where Alice is authenticating herself to Bob using a server S: 1. A \rightarrow B: M,A,B,\{M,A,B,N_A\}_{K_{AS}} 2. B \rightarrow S: M,A,B,\{M,A,B,N_A\}_{K_{AS}},\{M,A,B,N_B\}_{K_{BS}} 3. S \rightarrow B: M,\{N_A,K_{AB}\}_{K_{AS}},\{N_B,K_{AB}\}_{K_{BS}} 4. B \rightarrow A: M,\{N_A,K_{AB}\}_{K_{AS}} One problem with this protocol is that a malicious intruder can arrange for A and B to end up with different keys. Here is how. A and B execute the first three messages; at this point, B has received the key K_{AB}. The intruder intercepts the fourth message. S/he replays message 3, which results in S generating a new key K'_{AB} and sending it to B. The intruder intercepts this message too, but sends to A the part of it that B would have sent to A. So now A has finally received the expected fourth message, but with K'_{AB} instead of K_{AB}. Another problem is that although the server tells B that A used a nonce, B doesn't know if this was a replay of an old message.
See also: Kerberos, Needham-Schroeder, Wide Mouth Frog.

 

<< PreviousWord BrowserNext >>
list of english districts by population
thermae
port eliot
baths of caracalla
mercer county, new jersey route 653
universitas 21
4th canadian armoured brigade
intertropical convergence zone
unionfs
american girls (band)
george hadley
mercer county, new jersey route 672
malaysia campus (university of nottingham)
andrew dice clay
francesco maria veracini
tipping point
gabrielle
physical fitness
giuseppe tartini
needham schroeder
list of universities in brazil
betta
thomas mundy peterson
the emperor's new mind
intershop
wally heider studios
u.s. child labor laws
associative memory
common mare's tail
gg allin
ned lagin
janken
black fax
forum check
workingman's dead
battle of moerbrugge
wide mouth frog
farrell dobbs
conjugation of regular catalan verbs
technocapitalism
n scale
the holy sisters of the gaga dada
nasum
moghol language
Copyright 2005-2009 OnPedia.com. All Rights Reserved