LEARN MORE...

SUSS Financial Cryptography Hash Function for One Time Passwords Analysis

User Generated

Gzcbd

Computer Science

Singapore University of Social Sciences

Question Description

I'm working on a cyber security question and need an explanation to help me learn.

There are many different implementations in generating one-time passwords (OTP).

Consider the two implementations below (let’s assume that the OTP is the last six digits of the resulting hash value):

1. Hash(Current Time in UNIX timestamp || Bank’s secret key)

2. Hash(Current Time in UNIX timestamp || User-specific secret key)

Appraise the security of each implementation and justify your answers. What is the desired property of hash function in this case?

Note: I assume that the Bank's secret key refers to a single key which is used for every user in the bank and the user-specific secret key is well, user-specific, where each user has their own unique key.

Student has agreed that all tutoring, explanations, and answers provided by the tutor will be used to help in the learning process and in accordance with Studypool's honor code & terms of service.

Explanation & Answer

View attached explanation and answer. Let me know if you have any questions.

Running head: FINANCIAL CRYPTOGRAPHY

Financial Cryptography
Student’s Name
Institutional Affiliation

1

FINANCIAL CRYPTOGRAPHY

2
Financial Cryptography

The implementation of the Hash Function for OTP (One-Time Passwords) is an
important security feature in the banking industry. The security system enables the banking
institutions to protect the users’ sensitive information through the encryption and decryption...

Rhan (3475)
University of Maryland
Studypool
4.7
Indeed
4.5
Sitejabber
4.4

Similar Content

Critical Thinking Net Neutrality
What is meant by “net neutrality”? and why is it controversial? Summarize and evaluate one argument for and one agains...
What are some ways a user can look at and analyze data in a table
What are some ways a user can look at and analyze data in a table in order to build a report that will contain useful info...
Help editing attached IT ethical paper
Can someone help me update my attached paper with the flowing headline. the Describe a current IT-related issue or pr...
OS AND COMPUTER SYSTEM SECURITY
The focus of the reseach paper is Host Intrusion Detection Systems (HIDS) or AntiVirus Systems. Computer Virus creates ma...
Texas A&M Kingsville Role of Data Mining Techniques in Terrorism Detection Discussion
submit your topic and references, in APA format of preliminary references that you will use when completing your final sem...
two assignment in programming in python, computer science homework help
see what i attached and solve the questions?...
Q4 Virtual Teams
Communication is a key element in promoting teamwork and helping employees achieve the goals of their organization regardl...
Network Performance At Bedford Campus
hardware, freedom to use or install preconfigured package as Operating system and any Operating system or per the user req...
Information And Digital Security
• Digital and Information security are crucial for all businesses and users on the internet. Confidential and personal i...

Related Tags

Saudi electronic university eksu Aaron's Academy of Beauty Saudi electronic university Carolinas College of Health Sciences UMGC Carolinas College of Health Sciences University of the Cumberlands North Carolina Central University Wilmington University Bloomsburg University of Pennsylvania CSCI 415