CMSC 414 Computer and Network Security Lecture 15 Jonathan Katz.

Slides:

Advertisements

Similar presentations

CMSC 414 Computer (and Network) Security Lecture 22 Jonathan Katz.

Advertisements

Authentication Applications Kerberos And X.509. Kerberos Motivation –Secure against eavesdropping –Reliable – distributed architecture –Transparent –

DIGITAL SIGNATURES and AUTHENTICATION PROTOCOLS - Chapter 13

DIGITAL SIGNATURES and AUTHENTICATION PROTOCOLS - Chapter 13 DIGITAL SIGNATURES and AUTHENTICATION PROTOCOLS - Chapter 13 Digital Signatures Authentication.

Lecture 6 User Authentication (cont)

CS470, A.SelcukCryptographic Authentication1 Cryptographic Authentication Protocols CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CMSC 414 Computer and Network Security Lecture 12 Jonathan Katz.

CS426Fall 2010/Lecture 81 Computer Security CS 426 Lecture 8 User Authentication.

CMSC 414 Computer and Network Security Lecture 10 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 26 Jonathan Katz.

CS555Spring 2012/Topic 161 Cryptography CS 555 Topic 16: Key Management and The Need for Public Key Cryptography.

CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 9 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 15 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 3 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 21 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 7 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 19 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 16 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 17 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 9 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 16 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 16 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 14 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.

1 Pertemuan 04 Pengamanan Akses Sistem Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.

CMSC 414 Computer and Network Security Lecture 19 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 24 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 8 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 18 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 23 Jonathan Katz.

A more efficient and secure dynamic ID- based remote user authentication scheme Yan-yan Wang, Jia-yong Liu, Feng-xia Xiao, Jing Dan in Computer Communications.

CMSC 414 Computer and Network Security Lecture 17 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 14 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 24 Jonathan Katz.

NS-H /11041 System Security. NS-H /11042 Authentication Verifying the identity of another entity Two interesting cases (for this class): –Computer.

CMSC 414 Computer and Network Security Lecture 11 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 13 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 14 Jonathan Katz.

Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 3 – User Authentication.

10. Key Management. Contents Key Management  Public-key distribution  Secret-key distribution via public-key cryptography.

Key Agreement Guilin Wang School of Computer Science 12 Nov

Software Security Seminar - 1 Chapter 5. Advanced Protocols 조미성 Applied Cryptography.

Fall 2010/Lecture 321 CS 426 (Fall 2010) Key Distribution & Agreement.

CIST/ETRI/ISIT/KDDI/Kyusyu Univ./NICT Joint Research Workshop on Ubiquitous Network Security 2005 Verifier-Based Password-Authenticated Key Exchange Jeong.

CSCE 522 Identification and Authentication. CSCE Farkas2Reading Reading for this lecture: Required: – Pfleeger: Ch. 4.5, Ch. 4.3 Kerberos – An Introduction.

1 Lect. 20. Identification. 2  Entity Authentication (Identification) Over the communication network, one party, Alice, shows to another party, Bob,

CMSC 414 Computer and Network Security Lecture 20 Jonathan Katz.

COEN 350: Network Security Authentication. Between human and machine Between machine and machine.

COEN 351 Authentication. Authentication is based on What you know Passwords, Pins, Answers to questions, … What you have (Physical) keys, tokens, smart-card.

Threats and Solutions of Information Security - Confidentiality, Integrity and Availability Hyunsung Kim.

CMSC 414 Computer and Network Security Lecture 20 Jonathan Katz.

KERBEROS SYSTEM Kumar Madugula.

Threshold password authentication against guessing attacks in Ad hoc networks ► Chai, Zhenchuan; Cao, Zhenfu; Lu, Rongxing ► Ad Hoc Networks Volume: 5,

CMSC 414 Computer and Network Security Lecture 18 Jonathan Katz.

Secure Remote Authentication Using Biometrics Portions of this work done with Xavier Boyen, Yevgeniy Dodis, Rafail Ostrovsky, Adam Smith Jonathan Katz.

SECURITY. Security Threats, Policies, and Mechanisms There are four types of security threats to consider 1. Interception 2 Interruption 3. Modification.

Pertemuan #8 Key Management Kuliah Pengaman Jaringan.

KERBEROS. Introduction trusted key server system from MIT.Part of project Athena (MIT).Developed in mid 1980s. provides centralised private-key third-party.

EMV Operation and Attacks Tyler Moore CS7403, University of Tulsa Reading: Anderson Security Engineering, Ch (136—138), (328—343) Papers.

CSEN 1001 Computer and Network Security Amr El Mougy Mouaz ElAbsawi.

CMSC 414 Computer and Network Security Lecture 2 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 3 Jonathan Katz.

Outline The basic authentication problem

CMSC 414 Computer and Network Security Lecture 15

Protocol ap1.0: Alice says “I am Alice”

Presentation transcript:

CMSC 414 Computer and Network Security Lecture 15 Jonathan Katz

Ethereal demonstration (telnet and CHAP)

Basic authentication protocols…  Server stores H(pw); user sends pw –“Secure” against server compromise, but not eavesdropping (or replay attacks)  Server stores pw, sends R; user sends H(pw,R) –Secure against eavesdropping, but not server compromise (or dictionary attack) –What if the user sends R also…?  Can we achieve security against both? –We will see later…

Other techniques for human auth.  Tokens –Magnetic stripe cards –Smartcards –“Standalone” tokens:  Still need a secure auth. protocol!

Biometrics  Various possibilities…  Drawbacks –Entropy? –Are biometric data secret? –Revocation?  Difficult to use securely! –Non-uniform –Errors –Still need a secure protocol…

Public-key protocols  Server stores pk; user stores sk  Server sends R; user signs R –Using a secure signature scheme…  Is this secure? –Potential weaknesses –What if we had used encryption instead?  Can we achieve security against server compromise and eavesdropping without using public-key crypto?