Answered: Describe the purpose and operation of a…

Database System Concepts

7th Edition

ISBN:9780078022159

Author:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan

Publisher:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan

Chapter1: Introduction

Section: Chapter Questions

Problem 1PE

See similar textbooks

Related questions

Question

Describe the purpose and operation of a challenge-reply authentication system. What makes it more secure than a conventional password-based strategy is not immediately obvious.

Expert Solution

Step 1

In a client-server system, password-based authentication is often used.

However, since passwords go via the internet, it is not very safe.

In such situations, a challenge-response system is more secure.

In a challenge-response system, the following rules apply:

Initially, the database will give the client a challenge string.

The client encrypts the challenge string using a secret password as the encryption key, then returns the result to the database.

The database then decrypts the same-password string and compares it to the original challenge string.

As a consequence, the client may be authenticated without having to provide his or her password over the network.

Step by step

Solved in 2 steps

SEE SOLUTION Check out a sample Q&A here

Knowledge Booster

Learn more about

Need a deep-dive on the concept behind this application? Look no further. Learn more about this topic, computer-science and related others by exploring similar questions and additional content below.

Similar questions