Crypto U8, example dynamic password scheme

Description

IYM002 (Unit 8 - randomness, freshness, AKE) Note on Crypto U8, example dynamic password scheme, created by jjanesko on 24/04/2013.
jjanesko
Note by jjanesko, updated more than 1 year ago
jjanesko
Created by jjanesko over 11 years ago
191
10

Resource summary

Page 1

Prerequisite:  Server and user's smart token both share the same, agreed up key and password function.Steps to authentication with dynamic passwords: User makes a request to server to be able to authenticate. Server sends a randomly generated challenge back to user. User authenticates to the smart token using a pin. If authentication to token successful, the user then enters the challenge value into the token. The token then uses the password function to generate a response to the challenge. The user sends the response back to the server. The server checks for message freshness.  The server uses the same challenge and password function to generate the correct response value and compares it against the response from the user.  If they match, the user is granted access.

New Page

Show full summary Hide full summary

Similar

Crypto U8 (part 2), Freshness
jjanesko
Crypto U8 (part 3), entity authentication
jjanesko
Crypto U8 (part 1), Randomness
jjanesko
Crypto U4, Block Cipher, Cipher Feedback Mode (CFB)
jjanesko
Crypto U4, Block Cipher, Cipher Block Chaining Mode (CBC)
jjanesko
Crypto U1, Basic Principles
jjanesko
Crypto U3, Theoretical vs. Practical Security
jjanesko
Crypto U4, Stream Cipher
jjanesko
Crypto U4, Block Cipher, Electronic Codebook Mode (ECB)
jjanesko
Crypto U4, Block Cipher, Counter Mode
jjanesko
Crypto U2, Crypto design principles
jjanesko