LOGBOOK

HELP

Quiz Entry - updated: 2026.06.25

Besides signing, what's the second flavour of asymmetric challenge-response authentication?

Encryption variant: Bob encrypts a random value R with Alice's public key; Alice decrypts with her private key and returns R.

The flow:

  1. Setup: Alice has (sk, pk). Bob has Alice's pk.
  2. Login:
    • Alice → Bob: "I'm Alice"
    • Bob picks random R, sends challenge = ENC(pk, R)
    • Alice: R = DEC(sk, challenge), sends back R
    • Bob checks the returned R matches what he encrypted.

Same security properties as the signing variant:

  • Only Alice can decrypt challenge (she's the only one with sk).
  • Bob can't impersonate Alice — he doesn't have sk.

Why both flavours exist:

  • Signing is generally preferred in modern protocols (TLS, FIDO2, WebAuthn) because signatures are self-contained, non-repudiable, and don't require the verifier to keep state during the challenge.
  • Encryption of a challenge is conceptually simpler and was used in older protocols; it's less common today.

From Quiz: ISF / Access Control | Updated: Jun 25, 2026