0% found this document useful (0 votes)

21 views

Entity Authentication

Entity authentication is a technique where one party proves their identity to another. It involves a claimant proving their identity to a verifier. Common methods of authentication include something the claimant knows (like a password), possesses (like an ID card), or is (like fingerprints). Password authentication involves the claimant demonstrating they know a secret password. Challenge-response authentication avoids sending the secret by having the verifier send a challenge that the claimant responds to using the secret. Digital signatures using public/private key cryptography allow for authentication without shared secrets.

Uploaded by

kishorerajan777

Available Formats

Download as PPTX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

21 views

Entity Authentication

Uploaded by

kishorerajan777

Available Formats

Download as PPTX, PDF, TXT or read online on Scribd

You are on page 1/ 10

ENTITY AUTHENTICATION

Kishore Rajan R
INTRODUCTION
 ENTITY AUTHENTICATION IS A TECHNIQUE DESIGNED TO
LET ONE PARTY PROVE THE IDENTITY OF ANOTHER PARTY.
 AN ENTITY CAN BE A PERSON, A PROCESS, A CLIENT, OR A
SERVER
 THE ENTITY WHOSE IDENTITY NEEDS TO BE PROVED IS
CALLED THE CLAIMANT; THE PARTY THAT TRIES TO PROVE
THE IDENTITY OF THE CLAIMANT IS CALLED THE VERIFIER.
MESSAGE AUTHENTICATION (DATA ORIGIN)
VERSUS ENTITY AUTHENTICATION
• THERE ARE TWO DIFFERENCES BETWEEN MESSAGE AUTHENTICATION
(DATAORIGIN AUTHENTICATION), AND ENTITY AUTHENTICATION –
MESSAGE AUTHENTICATION MIGHT NOT HAPPEN IN REAL TIME; ENTITY
AUTHENTICATION DOES.
• MESSAGE AUTHENTICATION: WHEN BOB VERIFIES THE MESSAGE THAT
ALICE SENT, ALICE MAY OR MAY NOT BE PRESENT IN THE VERIFICATION
PROCESS.
EG. AUTHENTICATE THAT ALICE SENT AN EMAIL TO BOB • ENTITY
AUTHENTICATION: NO REAL MESSAGE COMMUNICATION INVOLVED UNTIL
ALICE IS AUTHENTICATED BY BOB.
VERIFICATION CATEGORIES
• • SOMETHING KNOWN – A SECRET KNOWN ONLY BY THE CLAIMANT THAT CAN
BE CHECKED BY THE VERIFIER
• EG. PASSWORD, PIN, SECRET KEY, PRIVATE KEY
• SOMETHING POSSESSED – SOMETHING THAT CAN PROVE THE CLAIMANT’S
IDENTITY PASSPORT.
DRIVER’S LICENSE, IDENTIFICATION CARD, CREDIT CARD • SOMETHING INHERENT
– INHERENT CHARACTERISTICS OF THE CLAIMANT • CONVENTIONAL SIGNATURE,
FINGERPRINTS, FACIAL CHARACTERISTICS
PASSWORDS
• • THE SIMPLEST AND OLDEST METHOD OF ENTITY AUTHENTICATION IS THE PASSWORD-
BASED AUTHENTICATION, WHERE THE PASSWORD IS SOMETHING THAT THE CLAIMANT
KNOWS. – FIXED PASSWORD – ONE-TIME PASSWORD
• FIXED PASSWORD: POSSIBLE ATTACKS – EAVESDROPPING – STEALING A PASSWORD • WHEN
ALICE WRITE A PASSWORD SOMEWHERE – ACCESSING A PASSWORD FILE – GUESSING
• ONE-TIME PASSWORD :• FIRST APPROACH – USER AND THE SYSTEM AGREE UPON A LIST OF
PASSWORDS.
• • SECOND APPROACH – USER AND THE SYSTEM AGREE TO SEQUENTIALLY UPDATE THE
PASSWORD.
• • THIRD APPROACH - LAMPORT – USER AND THE SYSTEM CREATE A SEQUENTIALLY
UPDATED PASSWORD USING A HASH FUNCTION
CHALLENGE RESPONSE
• IN PASSWORD AUTHENTICATION, THE CLAIMANT PROVES HER IDENTITY BY
DEMONSTRATING THAT SHE KNOWS A SECRET, THE PASSWORD. – USER NEEDS TO
SEND THE PASSWORD AND THUS IT IS SUSCEPTIBLE TO ADVERSARY
• IN CHALLENGE-RESPONSE AUTHENTICATION, THE CLAIMANT PROVES THAT SHE
KNOWS A SECRET WITHOUT SENDING THE SECRET TO THE VERIFIER.
• THE CHALLENGE IS A TIME-VARYING VALUE SUCH AS A RANDOM NUMBER OR A
TIMESTAMP THAT IS SENT BY THE VERIFIER .
• THE CLAIMANT APPLIES A FUNCTION TO THE CHALLENGE AND SENDS A
RESPONSE TO THE VERIFIER.
SYMMETRIC-KEY : NONCE
CHALLENGE
A TIME-VARYING VALUE IS A NONCE – A RANDOM NUMBER
USED ONLY ONCE, RB

NONCE IS A RANDOM BIT-STRING USED ONLY ONCE: ALICE

 BOB: E(KPUB, (N, A, KAB)) • BOB MUST CHECK THAT HE
HAS NOT RECEIVED THAT N BEFORE
SYMMETRIC-KEY

TIMESTAMP
NONCE CHALLENGE CHALLENGE BIDIRECTIONAL
AUTHENTICATION
A TIME-VARYING VALUE IS A NONCE • A TIME-VARYING VALUE IS A ALICE IS AUTHENTICATED TO BOB
– A RANDOM NUMBER USED ONLY TIMESTAMP, T AND BOB IS AUTHENTICATED TO
ONCE, RB ALICE
KEYED HASH FUNCTION
(MAC)
• THE METHOD PRESERVES THE INTEGRITY OF
CHALLENGE AND RESPONSE MESSAGES AND
ALSO USES A SECRET, KEY.

• WHEN BOB RECEIVES THE MESSAGE, HE TAKES

PLAINTEXT AND APPLIES THE KEYED HASH
FUNCTION AND THEN COMPARES HIS CALCULATION
WITH WHAT HE RECEIVED TO DETERMINE
AUTHENTICITY OF ALICE.
ASYMMETRIC KEY CIPHER – DIGITAL
SIGNATURE

BIDIRECTIONAL UNIDIRECTIONAL
ALICE  BOB: ALICE BOB  ALICE: RB ALICE  BOB: ALICE BOB  ALICE: RB ALICE 
ALICE  BOB: BOB; E(H(RB ||BOB),KPRA) BOB: RA ; BOB; E(H(RB ||BOB),KPRIA) B: D(E(H(RB ||
BOB: D(E(H(RB ||BOB),KPRA), KPUA) = BOB),KPRIA), KPUBA) = H(RB ||BOB), VERIFY THE
H(RB ||BOB); VERIFY SIGNATURE
SIGNATURE BOB  ALICE: ALICE; E(H(RA ||
ALICE),KPRIB)

IP Security: - Chapter 6 of William Stallings. Network Security Essentials (2nd Edition) - Prentice Hall. 2003
No ratings yet
IP Security: - Chapter 6 of William Stallings. Network Security Essentials (2nd Edition) - Prentice Hall. 2003
31 pages
E-Commerce MCQ INFOTECH 200 Questions PDF
76% (41)
E-Commerce MCQ INFOTECH 200 Questions PDF
26 pages
Double Entry System
No ratings yet
Double Entry System
6 pages
Accounting & Finance Module: B: Ca R. C. Joshi
No ratings yet
Accounting & Finance Module: B: Ca R. C. Joshi
131 pages
Training Module
No ratings yet
Training Module
22 pages
Authentication Protocols
100% (1)
Authentication Protocols
30 pages
Deadlock
No ratings yet
Deadlock
16 pages
Cost Management Cloud: Receipt Accounting
No ratings yet
Cost Management Cloud: Receipt Accounting
14 pages
Designing and Managing
No ratings yet
Designing and Managing
67 pages
Entity Authentication
No ratings yet
Entity Authentication
30 pages
Receiving Procedure
100% (1)
Receiving Procedure
41 pages
The Economics of Cryptocurrencies-Bitcoin and Beyond: Anmol Garg
No ratings yet
The Economics of Cryptocurrencies-Bitcoin and Beyond: Anmol Garg
45 pages
Previously Mercury Interactive Product Now Taken Over by HP
No ratings yet
Previously Mercury Interactive Product Now Taken Over by HP
54 pages
Investment Decision Criteria (PAF)
No ratings yet
Investment Decision Criteria (PAF)
32 pages
Billing Process Suggestion
No ratings yet
Billing Process Suggestion
5 pages
ACH - System & Messaging
No ratings yet
ACH - System & Messaging
27 pages
Lecture Notes On Bidding Process
No ratings yet
Lecture Notes On Bidding Process
20 pages
Substantive Procedures
No ratings yet
Substantive Procedures
58 pages
Dictionary of Banking and Finance
No ratings yet
Dictionary of Banking and Finance
2,291 pages
Quick_Guide_Final
No ratings yet
Quick_Guide_Final
44 pages
Sap Fico Real Time Course Contents
No ratings yet
Sap Fico Real Time Course Contents
9 pages
Accounting and Finance Bankers
No ratings yet
Accounting and Finance Bankers
68 pages
GeM & Eproc - 11 Jun 2019
No ratings yet
GeM & Eproc - 11 Jun 2019
26 pages
Airway Bill
No ratings yet
Airway Bill
10 pages
Workshop 1 2021-22 - Final
No ratings yet
Workshop 1 2021-22 - Final
19 pages
-01042025-jonkershoek-security-services
No ratings yet
-01042025-jonkershoek-security-services
37 pages
Jaiib Bookkeeping B
100% (1)
Jaiib Bookkeeping B
89 pages
Principles of Book Keeping
No ratings yet
Principles of Book Keeping
78 pages
Credit and Collection Week 10
No ratings yet
Credit and Collection Week 10
45 pages
CH04_Slides_Kh 2
No ratings yet
CH04_Slides_Kh 2
29 pages
(2024-25) Week 4-5 Provide Accommodation Reception - Part 1
No ratings yet
(2024-25) Week 4-5 Provide Accommodation Reception - Part 1
50 pages
WI WE ReExam PKG
No ratings yet
WI WE ReExam PKG
4 pages
Unit 2
No ratings yet
Unit 2
11 pages
Resolve & Win (RAW) - WFO (1)
No ratings yet
Resolve & Win (RAW) - WFO (1)
36 pages
1 Narula Sir Presentation - Start
No ratings yet
1 Narula Sir Presentation - Start
14 pages
Divine Word College of Calapan: Internship / Practicum Weekly Report
No ratings yet
Divine Word College of Calapan: Internship / Practicum Weekly Report
3 pages
Managing Demand & Capacity
0% (1)
Managing Demand & Capacity
25 pages
31 Life Cycle of A Trade
No ratings yet
31 Life Cycle of A Trade
45 pages
Chapter8 Test Techniques
No ratings yet
Chapter8 Test Techniques
10 pages
Chapter 2
No ratings yet
Chapter 2
12 pages
NON Covered
No ratings yet
NON Covered
3 pages
Business Bureau - Business Permit
No ratings yet
Business Bureau - Business Permit
42 pages
Cibop29a - Exch & Otc TLC
No ratings yet
Cibop29a - Exch & Otc TLC
26 pages
ACHC Implementation Guide
No ratings yet
ACHC Implementation Guide
30 pages
JAIIB / Diploma in Banking & Finance Accounting and Finance For Bankers
No ratings yet
JAIIB / Diploma in Banking & Finance Accounting and Finance For Bankers
89 pages
module iv
No ratings yet
module iv
27 pages
14- Digital Certificate (1)
No ratings yet
14- Digital Certificate (1)
27 pages
Group 1D - Airbnb Case
No ratings yet
Group 1D - Airbnb Case
16 pages
SCAP Training
No ratings yet
SCAP Training
4 pages
P2P Cycle Standard Po
No ratings yet
P2P Cycle Standard Po
30 pages
Cibop29a - Exch & Otc TLC
No ratings yet
Cibop29a - Exch & Otc TLC
26 pages
Labor Relations Module 6-7 Wages Birth of The Wage System
No ratings yet
Labor Relations Module 6-7 Wages Birth of The Wage System
15 pages
Oracle R12 Accounts Receivable (AR) Setups
No ratings yet
Oracle R12 Accounts Receivable (AR) Setups
19 pages
Supply Chain Management
50% (2)
Supply Chain Management
14 pages
4.1.s.methods of Payment
No ratings yet
4.1.s.methods of Payment
23 pages
C2A -Work at height Checklist - Rev 2 (1)
No ratings yet
C2A -Work at height Checklist - Rev 2 (1)
1 page
4 Charge Sheet
No ratings yet
4 Charge Sheet
35 pages
CBRS_LOA_Check_Request-2
No ratings yet
CBRS_LOA_Check_Request-2
1 page
Take Their Breath Away: How Imaginative Service Creates Devoted Customers
From Everand
Take Their Breath Away: How Imaginative Service Creates Devoted Customers
Chip R. Bell
3/5 (1)
French Business Dictionary: The Business Terms of France and Canada
From Everand
French Business Dictionary: The Business Terms of France and Canada
Morry Sofer
No ratings yet
Airbnb Arbitrage: Standard Operating Procedures
From Everand
Airbnb Arbitrage: Standard Operating Procedures
Sebastian Van Lexis
No ratings yet
The Ultimate Guide to Mastering Airbnb: A Step-by-Step Blueprint for Setting Up, Marketing, and Scaling a Profitable Airbnb Business
From Everand
The Ultimate Guide to Mastering Airbnb: A Step-by-Step Blueprint for Setting Up, Marketing, and Scaling a Profitable Airbnb Business
Rachael B
No ratings yet
4-1 Syllabus
No ratings yet
4-1 Syllabus
6 pages
Wolfcrypt FIPS 140-3
No ratings yet
Wolfcrypt FIPS 140-3
1 page
Certificate of Incorporation-180712
No ratings yet
Certificate of Incorporation-180712
1 page
BPAS: Blockchain-Assisted Privacy-Preserving Authentication System For Vehicular Ad-Hoc Networks
No ratings yet
BPAS: Blockchain-Assisted Privacy-Preserving Authentication System For Vehicular Ad-Hoc Networks
10 pages
Lotus Domino CA Admin
100% (1)
Lotus Domino CA Admin
7 pages
Lab1 Crypto Encryption
0% (1)
Lab1 Crypto Encryption
4 pages
Honey Encryption New Report - 1
No ratings yet
Honey Encryption New Report - 1
5 pages
Estlog
No ratings yet
Estlog
4 pages
Crypto Assignment 4
No ratings yet
Crypto Assignment 4
2 pages
INS Paper
No ratings yet
INS Paper
2 pages
Cryptography For Dummies 1st Edition Chey Cobb - The 2025 ebook edition is available with updated content
100% (1)
Cryptography For Dummies 1st Edition Chey Cobb - The 2025 ebook edition is available with updated content
47 pages
Pavithra Seminor
No ratings yet
Pavithra Seminor
8 pages
Password Cracking
No ratings yet
Password Cracking
21 pages
Advanced Card System ACOS6S SAM Data Sheet
No ratings yet
Advanced Card System ACOS6S SAM Data Sheet
23 pages
Image Steganography Using Mod-4 Embedding Algorithm Based On Image Contrast
No ratings yet
Image Steganography Using Mod-4 Embedding Algorithm Based On Image Contrast
6 pages
Self-Assessment Questionnaire D: Payment Card Industry (PCI) Data Security Standard
No ratings yet
Self-Assessment Questionnaire D: Payment Card Industry (PCI) Data Security Standard
78 pages
HiveMQ Enterprise Bridge Extension - HiveMQ Documentation
No ratings yet
HiveMQ Enterprise Bridge Extension - HiveMQ Documentation
31 pages
MCS 215
No ratings yet
MCS 215
2 pages
EX NO 8 Eavesdrop
No ratings yet
EX NO 8 Eavesdrop
6 pages
Question 1 Encrypt The Following Message Using A Vigeniere Cipher
No ratings yet
Question 1 Encrypt The Following Message Using A Vigeniere Cipher
2 pages
Console Output CLI Console
No ratings yet
Console Output CLI Console
27 pages
Sample Questions
No ratings yet
Sample Questions
20 pages
Encryption Tech
No ratings yet
Encryption Tech
8 pages
Chapter 2
No ratings yet
Chapter 2
93 pages
It430 Final Term File 4 Solved by Team Hadi
No ratings yet
It430 Final Term File 4 Solved by Team Hadi
23 pages
Cryptanalysis of 3-Pass HAVAL 1st edition by Bart Van Rompay, Alex Biryukov, Bart Preneel, Joos Vandewalle ISBN 3540205920 9783540205920 instant download
100% (3)
Cryptanalysis of 3-Pass HAVAL 1st edition by Bart Van Rompay, Alex Biryukov, Bart Preneel, Joos Vandewalle ISBN 3540205920 9783540205920 instant download
52 pages
A076108603 Signed
No ratings yet
A076108603 Signed
4 pages
Day-01-Information Security
No ratings yet
Day-01-Information Security
26 pages

Entity Authentication

Uploaded by

Entity Authentication

Uploaded by

ENTITY AUTHENTICATION

NONCE IS A RANDOM BIT-STRING USED ONLY ONCE: ALICE

• WHEN BOB RECEIVES THE MESSAGE, HE TAKES

You might also like