In this part, you will be working with HTTP's Digest authentication mechanism. Assume that accessing a resource "/Public/CS/Home.png" on a web server results in the following (partial) response.
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Digest realm="Mordor",
nonce="03e2abb8a924e966bee59d41cef32851",
opaque="4043168947418128"
Part 2A
Assuming that the user name is shemeka and the password is rlqy, the HTTP Authorization header line sent by the client (e.g., browser) following the above notification for authentication will be of the following form.
Authorization: Digest username="shemeka", response="", realm="Mordor", nonce="03e2abb8a924e966bee59d41cef32851", uri="/Public/CS/Home.png", opaque="4043168947418128"
What should be the value of the "response" field which currently is empty? Please do NOT include the quotation marks (i.e., ") in your answer. You must use lowercase hexadecimal digits in your answer, if applicable. [2 marks]
Part 2B
In order to safeguard against server compromises, the server stores a hash value that includes the password (and other things) and uses this hash value for authentication. In this particular example here, what is the hash value you expect the server to keep in its repository? You must use lowercase hexadecimal digits in your answer, if applicable. [2 marks]
In this part, you will be working with HTTP's Digest authentication mechanism. Assume that accessing a resource "...
Part 1 In this part, you will be working with HTTP's Basic authentication mechanism. Part 1A Access to a Web resource results in the following (partial) response. HTTP/1.1 401 Unauthorized Www-Authenticate: Basic realm="Mordor" Assuming that the user name is lorenza and the password is vwax, what is the complete HTTP Authorization header line sent by the client (i.e., browser) following the above notification to authenticate? Your header line should be complete with both the header field and the value field...