Challenge-Response Protocol

Challenge-Response Protocol definition in Computer Security terms:

Acronym(s): None

Definition(s): An authentication protocol where the Verifier sends the Claimant a challenge (usually a random value or a nonce) that the Claimant combines with a secret (such as by hashing the challenge and a shared secret together, or by applying a private key operation to the challenge) to generate a response that is sent to the Verifier. The Verifier can independently verify the response generated by the Claimant (such as by re-computing the hash of the challenge and the shared secret and comparing to the response, or performing a public key operation on the response) and establish that the Claimant possesses and controls the secret.
Source(s): NIST SP 800-63-2

Synonym(s): None


reference: CSRC Glossary