Authentication Servers and Session Keys

Questions and Answers

What is necessary for A to authenticate to B in the Needham-Schroeder protocol?

A must prove knowledge of KAB (correct)

A must decrypt a message from B

A must request a public key from S

A must send a challenge to B

What is the purpose of the certificate sent in step 2?

To authenticate B to A

To authenticate A to B

To prove the identity of the certification authority (correct)

To establish a shared secret key

How does B prove its identity to A in the Needham-Schroeder protocol?

By sending a challenge to A

By responding to A's challenge with NB (correct)

By decrypting a message from A

By sending a random nonce

What is the role of the certification authority in the Needham-Schroeder protocol?

To issue certificates containing public keys

What is the purpose of the random nonces NA and NB in the Needham-Schroeder protocol?

To ensure freshness and prevent replay attacks

What is the primary goal of the Needham-Schroeder Authentication Protocol?

To establish authentic and confidential communication between two principals

What is the purpose of the nonce NA in the Needham-Schroeder protocol?

To prove that the response is fresh and not a replay

What is the role of the authentication server S in the Needham-Schroeder protocol?

To act as a trusted intermediary between Alice and Bob

What is the purpose of the encryption {KAB,A}KBS in the Needham-Schroeder protocol?

To serve as a challenge to Bob

What is the purpose of the ticket for B in the Needham-Schroeder protocol?

To provide evidence that KAB was generated by S