It's not a secret anymore!
The moose likes Security and the fly likes authentication problem... Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Engineering » Security
Reply locked New topic

authentication problem...

vinaykumar singh

Joined: Jan 14, 2006
Posts: 13
hello all..

i m making a server client authentication model for this i m using MessageDigest class and its MD5 method.

By the help of this i am generating a random field called "key". And this key sends to the client, with username called "vinay", and ServerName��..

Sent field:-
WWW-Authenticate:: ServerName="WORKGROUP", key="0c977ebb93725e437e7d75f8adc1dc", UserName="vinay", algorithm="MD5";

And client should reply with same key (same value), ServerName and a predefined password (that server provide),that password is encrypted in response field by using MD5 algorithm.

received field:-
Authorization:: response="6486aafa17e2ebe3546d84a4e83c767e", UserName="vinay", ServerName="WORKGROUP", key="0c977ebb93725e437e7d75f8adc1dc", algorithm="MD5"

So in the received Header we have a new RESPONSE field which encrypted with password.

So problem is that ::-
how I can get PASSWORD from response field for authentication. means how can i decrypt that Response field.

please help me
Thanks in advance...

vinay singh
Ulf Dittmer

Joined: Mar 22, 2005
Posts: 42965
Please don't post the same question to multiple forums. If another forum is more appropriate for a question, one of the moderators will move it there anyway.

Since you got an answer in the other thread, I'm closing this one.
I agree. Here's the link:
subject: authentication problem...
It's not a secret anymore!