Consider the SSL protocol in Figure 1 a Suppose that the non

Consider the SSL protocol in Figure 1. a) Suppose that the nonces are R_A and R_B are removed from the protocol and we define K=h(S). What is the effect, if any. does this have on the security of the authentication protocol. b) Suppose that we change message four to HMAC(msgs, SRVR, K). What effect, if any, does this have on the security of the authentication protocol? b) Suppose that we change message three to E(PU_Bob, S), h(msgs, CLNTK). What effect, if any, does this have on the security of the authentication protocol? d) Alice authenticates Bob, not vice-versa. Why would server not authenticate client? How does client authenticate server? e) Briefly describe an SSL client can check a server\'s certificate for validity

Solution

a- There is a chance of replay attack in the current scenario which adversely affect the securiety

for other questions please paste as seprate questions