Protocols insecure against Replay Attack

  • Thread starter ecy5maa
  • Start date
  • #1
30
0

Homework Statement



Determine which of the following protocols are insecure
against replay attack , and explain why:

(a) A → B : username, password

(b) A → B : username, h(timestamp, password)

(c) A → B : username, timestamp, h(password)

(d) A → B : username, h(password), h(timestamp)



The Attempt at a Solution




I know a is insecure, b is secure but I am not certain about c and d.

Off the cuff, in C it seems that h(password) can be replicated as its in the open, as can timestamp, but then if timestamp can be replicated so can h(timestamp). No?

I guess my answer is that a,c and d are all insecure, so if possible can someone provide any input on this?
 

Answers and Replies

Related Threads on Protocols insecure against Replay Attack

  • Last Post
Replies
0
Views
2K
Replies
2
Views
3K
Replies
2
Views
2K
Replies
0
Views
853
Replies
5
Views
1K
Replies
10
Views
7K
Replies
6
Views
4K
Replies
18
Views
3K
D
Top