Partial preview of the text
Download data and network security and more Exercises Network security in PDF only on Docsity!
| CHAPTER 30 Message Security, User Authentication, and Key Management After studying cryptography in Chapter 29, we discuss some of its applications: message security, user authentication, and key management. Message security involves confidentiality, integrity, authentication, and finally nonrepudiation. , User authentication means verifying the identity of the person or process that wants to communicate with a system. User authentication is also needed for key management. : Finally, we need key management: the distribution of symmetric keys and the certification of the public keys. Section 30.4 explains the methods used in key management. — 30.1 MESSAGE SECURITY Let us first discuss the security measures applied to each single message. We can say that security provides four services: privacy (confidentiality), message authentication, message integrity, and nonrepudiation (see Fig. 30.1). Figure 30.1 Message security Message Security | Privacy Authentication Integrity Nonrepudiation | a fa aero