Integrity is a measure on whether how complete (remained unaltered) the received message itself is, as it would be the same or highly similar as the one that being sent. By further utilising encryption#, Digital Signature# and Data Integrity#, it could be used to counter Replay Attack# and Modification#
Integrity
- TNS3131 Chapter 7: Web Security
-
Security Service
Security Service is a service that improve the security data processing system and/or information transfers. It needs to at least secure four elements: confidentiality#, authenticity#, integrity#, and availability#. It has Security Mechanism# implemented in order to fulfil its promises and prevents potential Security Attack.
-
Secure Socket Layer (SSL)
The main security services, that is guarantee message integrity# and Confidentiality#, are provided by SSL Record Protocol. The former is done via MAC with shared secret key used for encryption, the latter with Handshake protocol. The operations are done as shown below:
-
Non-Repudiation
Non-Repudiation is a characteristic where both party, usually a sender and a receiver from #networking perspective, can’t deny the validity of a message. This will prove that the message is sent by that particular sender, and is received by that particular receiver. It utilises Digital Signature#, Data Integrity#, and Notarisation#.
-
Digital Signature
Digital Signature is a #Security Mechanism where hashed# data is appended to (sometimes encrypted# using Rivest-Shamir-Adleman (RSA)#) a data unit, allowing a recipient of the data unit to prove the source and Integrity# of the data unit. It could protect against forgery# due to its Non-Repudiation# nature. At the receiver side, it will either reject (return value 0) or accept (return value 1) the signature.
-
Data Integrity
Data Integrity is a #Security Mechanism that used to ensure the Integrity# of a data unit or stream of data units.