Digital Signatures are considered the most important development in public key encryption. Solar network developers say: "Digital signature is a string of bits calculated from some data (data is" signed ") and private key units and was not changed in transit" (The Java Tutorial, nd). Digital signatures should have authorship, date and time signature, authentication of signature content, and third party verification of disputes. Based on these features, there are several requirements for digital signatures. First of these requirements is that the signature must be a small pattern depending on the message being signed. The following claim is described to prevent forgery and denial. It says that the signature should use some information that is unique to the sender. The third requirement is that it will be quite easy to create the digital signature. Being easily recognizable and confirming the digital signature is another requirement. The fifth requirement provides that it must be computationally uneasible to create a digital signature, either by creating a new message about the current digital signature or by building a fraudulent digital signature for a particular message. The last requirement is that it must be practical to store a copy of the digital signature. Many methods of implementing digital signatures have been submitted and they fall into direct and arbitrary digital signature (Stallings, 2003).
Only communication on a direct digital signature applies only to relations between source and decision categories and arbitration plans for digital signatures, including arbitration. A direct digital signature is created by encrypting the entire message or encryption of the message using the sender's private key. Additional confidentiality may be provided by encrypting the message in its unit and adding a signature using either the official phone password or decoder shared between sender and recipient. One weakness in the direct signature system is that the sender can later refuse to send a message. Another weakness is the threat that a private key is slow and send a message with a signature. Both weakness is the main reason for the arbitration of the digital signature system. In the arbitration panel, the sender's message must first go through a writer who runs a series of tests to check the origin and content before it is sent to the recipient. Because the football manager plays such an important role, the sender and receiver must have significant confidence in this arbitrator. This confidence in the knife ensures that the sender can not sign his signature and assures the recipient that the sender can not deny his signature (Stallings, 2003).
The issue of an assault attack is the main concern in the case of mutual authentication when both parties confirm each other and change seats. The main problems with mutual acceptance lie in key relations: confidentiality and timelines. Timelines are susceptible to repetition attacks that interfere with activities by presenting parties with messages that seem authentic but not. One type of repeated attack is to suppress the response to an attack that may occur in the Denning Code of Conduct. The Denning protocol uses timings to enhance security. The problem here is about relying on clocks that are synchronized over the internet. It is said, "that scattered clocks can become asynchronous due to sabotage or clock defects or synchronization equipment" (Stallings, 2003, p. 387). Li Gong says: "The recipient is still sensitive to receiving the message like the current, even after the sender has detected the clock and resets the clock unless the message left a message while it was invalid." inadlicently. If the sender's clock is in front of the receiver and the message is recorded, the opponent can play back the message when the timestamp becomes active. This type of attack is known as a battle-repeated attack.
In order to address the concern of the assault attack, a candidate protocol was introduced. Here are the detailed steps.
1. "A starts the verification station by creating nonce, Na and sending it along with its identifier to B in simple text. This text will be returned to A in encrypted messages containing the meeting key and securing its A timeline.
2. B announces KDC that a meeting key is necessary. His message to KDC contains its ID and nonce, Nb. This nonce will be returned to B in encrypted message that includes the meeting code and ensures B of that period. Both the message in KDC also contains an encrypted block with codec shared by B and KDC This block is used to instruct KDC to issue a credential in A; the block specifies the intended recipient of credentials, a suggested validity period for credentials and nonce from A.
3. KDC is performed at AB and non-block and encrypted with an undercover key with A for the consequences of authentication as shown. KDC also sends A block encrypted with the secret t t key part of A and KDC This field confirms that B had an initial message (IDB) and that it is a timely message and no replay (Na), which gives A with a key key (KS) and the time limit for its use (Tb ).
4. A sends the ticket to B, together with residence B, the latter encrypted with the conference key. The tag gives B a decoder used to decode EKS [Nb] to recover nonce. The fact that the B style is encrypted with the meeting key confirms that the message came from A and is not a replay. "(Stallings, 2003 p. 387-388).
This protocol is not sensitive to suppression replay attacks because the nonces recipient The choice is that the digital signature is considered the most important development in the public key encryption and contains direct and direct digital signature methods. Direct digital signatures only communicate between the recipients and the decision makers, and the future is unpredictable for the sender (Gong, nd).
arbitration digital signature plans include the use of arbitration. Keeping attacks may occur if the sender's time is ahead of the receiver and the message is triggered. This allows the opponent to reproduce the message when the time stamp is present. This case is added to the implementation of the protocol s em uses timers that are not Equire synchronized clock because receiver B stops only an independently generated timer (Stallings, 2003).
Gong, Li (nd). Security risk depending on synchronized clocks. ORA Corporation and Cornell University. Get 5 November 2005, from https://portal.acm.org
Stallings, William. (2003). Encryption and network security: principles and practices. New Jersey: Pearson Education, Inc.
The Java Tutorial (nd). Sun developer network. Download November 5, 2005, from http://java.sun.com/docs/books/tutorial/index.html
Source by Joshua Maluchnik