Definition - What does Challenge-Response Authentication mean?
Challenge-response authentication is a group or family of protocols characterized by one entity sending a challenge to another entity. The second entity must respond with the appropriate answer to be authenticated.
A simple example of this is password authentication. The challenge is from a server asking the client for a password to authenticate the client's identity so that the client can be served.
Techopedia explains Challenge-Response Authentication
Most smart card systems use challenge-response authentication. These systems require at least two things for authentication and entry: the smart card and the user’s password.
Another challenge-response authentication example is the use of CAPTCHA, a form of reverse-Turing test for the system to determine if the client is a human or not. This is used to prevent spam and auto-registration of new accounts for a website or email.
Biometric systems are another form of challenge-response authentication.
In cryptography, zero-knowledge password proof and key agreement systems such as secure remote password, CRAM-MD5 and secure shell's challenge-response system based on RSA are considered to be very sophisticated challenge-response algorithms.
- Smart Card
- Completely Automated Public Turing Test To Tell Computers And Humans Apart (CAPTCHA)
- Open Systems Interconnection Model (OSI Model)
- Hypertext Transfer Protocol (HTTP)
- Internet Protocol (IP)
- Authentication Server
- Web Server
- Web Client J2EE
- Secure Shell (SSH)
Join thousands of others with our weekly newsletter
Free 30 Day Trial – VMTurbo Operations Manager: