reviewsolution3

1Reviewsolution31.Thearefiveauthenticationmechanism:Passwords,_Messagedigestsofpasswords_,_challenge-response_,Certificate-basedAuthenticationand_Biometrics__.2.DigitalCertificateBindsauserwithitspublickey.3.CA’sdigitalsignaturefieldmustbecontainedforallversionsofdigitalcertificate.4.Adigitalsignatureneedsapublic-keysystem.Thesignersignswithherprivatekey;theverifierverifieswiththesigner’spublickey.Thesignersignswithherprivatekey;theverifierverifieswiththesigner’spublickey.5.Acryptosystemusestheprivateandpublickeysofthereceiver,adigitalsignatureusestheprivateandpublickeysofthesender.6.Whataretheproblemsassociatedwithcleartextpasswords?Answer:Clear-textpasswordshavetwoproblemsassociatedwiththem:(a)Theuserdatabasecontainspasswordsincleartext;and(b)Thepasswordtravelsincleartextfromtheuser’scomputertotheserver,overthetransmissionnetwork.Therefore,anattackerhastheopportunityofgettingholdofthepasswordattwoplaces.7.Thethreeaspectsofa3-factorsauthenticationare:_someingknow_,___Somethingpossessed,__Somethinginherent_.28.Inmessagedigestofpasswordauthenticationmechanism,messagedigestofpasswordisstoredinthedatabase.(True)9.HowdoestheCAsignadigitalcertificate?Answer:MessagedigestalgorithmDigitalCA’sprivatekeysignaturealgorithm10.Howcanweverifyadigitalcertificate?MessagedigestalgorithmCA’sPublicDe-signingkeyAlgorithmCertificatesCertificateisvalidisinvalidAcceptitRejectit11.Theprivatekeyforsigningmustnotbebackupafteritexpires.(True)Amessagedigest(hash)ofallbutthelastfieldsofthedigitalcertificateiscreatedmessagedigestDigitalsignatureThedigitalsignatureoftheCAisstoredasthelastfieldofthedigitalcertificatecreatedmessagedigest(MD1)Amessagedigest(hash)ofallbutthelastfieldsofthedigitalcertificateiscreatedCA’sDigitalSignaturemessagedigest(MD2)IsMD1=MD2?312.Theprivatekeyforencryptionmustnotbebackupafteritexpires.(False)13.Foraconventionalsignature,thereisnormallyaone-to-manyrelationshipbetweenasignatureanddocuments.14.Foradigitalsignature,thereisaone-to-onerelationshipbetweenasignatureandamessage.15.Adigitalsignatureprovidesmessageauthentication，messageintegrity，Nonrepudiation.16．Theentitywhoseidentityneedstobeprovediscalledtheclaimant;thepartythattriestoprovetheidentityoftheclaimantiscalledtheverifier.17．Messageauthenticationmighthappeninrealtime.（False）18．entityauthenticationmighthappeninrealtime.（True）19．Biometricstechniquesinclude_Fingerprint,Iris,Retina,favce,Hands,Voice,DNA,signature,Keystroke____________