Authentication Servers and Session Keys

Questions and Answers

What is necessary for A to authenticate to B in the Needham-Schroeder protocol?

• A must prove knowledge of KAB (correct)
• A must decrypt a message from B
• A must request a public key from S
• A must send a challenge to B

What is the purpose of the certificate sent in step 2?

• To authenticate B to A
• To authenticate A to B
• To prove the identity of the certification authority (correct)
• To establish a shared secret key

How does B prove its identity to A in the Needham-Schroeder protocol?

• By sending a challenge to A
• By responding to A's challenge with NB (correct)
• By decrypting a message from A
• By sending a random nonce

What is the role of the certification authority in the Needham-Schroeder protocol?

To issue certificates containing public keys (A)

What is the purpose of the random nonces NA and NB in the Needham-Schroeder protocol?

To ensure freshness and prevent replay attacks (B)

What is the primary goal of the Needham-Schroeder Authentication Protocol?

To establish authentic and confidential communication between two principals (D)

What is the purpose of the nonce NA in the Needham-Schroeder protocol?

To prove that the response is fresh and not a replay (B)

What is the role of the authentication server S in the Needham-Schroeder protocol?

To act as a trusted intermediary between Alice and Bob (C)

What is the purpose of the encryption {KAB,A}KBS in the Needham-Schroeder protocol?

To serve as a challenge to Bob (C)

What is the purpose of the ticket for B in the Needham-Schroeder protocol?

To provide evidence that KAB was generated by S (A)