Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

In this part, you? Will be working with HTTP\'s Digest authentication mechanism.

ID: 3682417 • Letter: I

Question

In this part, you? Will be working with HTTP's Digest authentication mechanism. Assume that accessing a resource "/Public/CS/Home. Png" on a web server results in the following (partial) response. HTTP/1.1 401 Unauthorized WWW-Authenticate: Digest realm="Mordor", nonce="03e2abb8a924e966bee59d41cef32851", opaque="4043168947418128" Part 2A Assuming that the user name is 8688049 and the password is 9408868, the HTTP Authorization header line sent by the client (e.g., browser) following the above notification for authentication will be of the following form. Authorization: Digest username="8688049", response=",,/realm="Mordor", nonce="03e2abb8a924e966bee59d41cef32851", uri="/Public/CS/Home. Png", opaque="4043168947418128" What should be the value of the "response" field which currently is empty? Please do NOT include the quotation marks (i. E.,") in your answer. You must use lowercase hexadecimal digits in your answer, if applicable. In order to safeguard against server compromises, the server stores a hash value tht includes the password (and other things) and uses this hash value for authentication. In this particular example here, what is the hash value you expect the server to keep in its repository? You must use lowercase hexadecimal digits in your answer, if applicable. Part 2CA man-in-thc-middle attack found the following HTTP Authorization header in transit.Authorization: Digest username="8688049"/response="bfc7fd8930c8fIf94ba9bde3d7808c5e", realm="Mordor", nonce="03e2abb8a924e966bee59d41cef32851", uri="/Public/CS/Home. Png", opaque="4043168947418128" What is the password that gives rise to the above HTTP Authorization header? The password is thought to be a common dictionary word, and therefore you may wish to try some of the common English words.

Explanation / Answer

String HA1

String HA2

response = MD5(String MD5 (username:Realm:PassWord):nonce: String MD5 (method:digestURI))

steps for calculating the response value:

1. compute the MD5 hash value of the user name, authentication realm and password in combination

2. the response from the client is computed as a combination of HA1 results, server nonce, counter of the request, nonce of the client, the code for protection quality and the result from HA2

HA1 = MD5(“8688049:

plugging in the values or applying the above equation,

Part 2A) Response = after MD5 hashing the response code of “7A5234B786329CAB5D6EFFF4421” becomes bfc7fd8930c8f1f94ba9bde3d78008c5e

Parts 2B, 2C)

HA1 = MD5(“8688049:Mordor:password”)

= 8734ab23645e7532d9364a32b3e3dd3ed887

Related Questions

In this module, you will look for an article or news story/video that relates to
Question #1881061
In this near earth situation, the pulley has mass 0.63kg, radius 0.32m, and enco
Question #2260867
In this near-earth situation, the pulley has mass 0.63kg, radius 0.32m, and enco
Question #2260885
In this network flow model, the flow of goods can occur both \"out\" of and \"in
Question #2587403
In this new world companies release expensive products on the market with no rea
Question #353826
In this next drawing, the South Pole of a magnet is facing down (it is closest t
Question #1385476
In this next drawing, the South Pole of a magnet is facing down (it is closest t
Question #1387084
In this operating system problem, it asks to fill in the blanks of the page tabl
Question #3599304
Hire Me For All Your Tutoring Needs
Integrity-first tutoring: clear explanations, guidance, and feedback.
Drop an Email at
drjack9650@gmail.com
Chat Now And Get Quote

Navigate

Previous
In this part, you will write a function student.alert (). The function simulates
Next
In this particular experiment performed, 3 different metal-organic frameworks we

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.