Answer Posted / gtech
The Wide Mouth Frog protocol is a computer network
authentication protocol designed for use on insecure
networks (the Internet for example). It allows individuals
communicating over a network to prove their identity to each
other while also preventing eavesdropping or replay attacks,
and provides for detection of modification and the
prevention of unauthorized reading (cont)........
This can be proven using BAN logic.
The protocol can be specified as follows in security
protocol notation, where Alice is authenticating herself to
Bob using a server S:
A ightarrow S: A,{T_A, K_{AB}, B}_{K_{AS}}
S ightarrow B: {T_S, K_{AB}, A}_{K_{BS}}
Note that to prevent active attacks, some form of
authenticated encryption (or message authentication) must be
used.
The protocol has several problems:
* a global clock is required.
* the server has access to all keys.
* the value of the shared key between A and B is completely
determined by A.
* can replay messages within period when timestamp is valid.
* A is not assured that B exists.
* The protocol is stateful. This is usually undesired
because it requires more functionality and capability from
the server. For example, "S" must be able to deal with
situations in which "B" is unavailable.
------- :)---------
Is This Answer Correct ? | 0 Yes | 0 No |
Post New Answer View All Answers
Define the virtual path?
Explain the difference between arp and rarp?
Explain the difference between tftp and ftp application layer protocols?
What is trigger rip and from which ios version it starts?
What is difference between igp and eigrp?
Does a bridge divides a network into smaller segments?
What are the ranges of private ips?
What is the working of router?
What is default cost of serial interface in ospf?
What is the difference between simple authentication and md5?
What is the terminal emulation, in which layer it comes?
What are partial updates?
Define autonomous system (as)?
What are some standards supported by the Presentation layer?
Which command we give for live view of remote site routers?