First, the message authentication method:
1, digital signature:
Verifying the source and integrity of the message, using public key cryptosystem, the sender of the message combines the hash value of the message with the private key to form a digital signature, and sends the digital signature to the receiver together with the message. The receiver decrypts the digital signature using the public key, and then calculates the hash value of the message and the hash value obtained by the digital signature. If they are consistent, the source address of the message is legal.
2. Message verification code (MAC).
MAC is a message authentication method, which is obtained by calculating the message with the key through the hash algorithm of HMAC (message authentication code based on hash). MAC can effectively prevent messages from being tampered with. Both the sender and the receiver have the key to calculate the MAC, and send the MAC value together when sending.
Second, the entity identification method:
1, password authentication:
A method of identity authentication using ciphertext such as password and key. Both communication parties use the same key to encrypt and decrypt, which can ensure the confidentiality and integrity of data and realize the identity authentication of entities.
2. Digital certificate:
Digital certificate is a kind of digital trust certificate, which is usually used to verify the identity of an entity. Digital certificates are issued by a third-party trusted organization, including the information of the certificate holder and the public key. Digital certificate ensures the credibility of the certificate holder's identity and is a common method to realize entity authentication.
3. Biometrics:
Using biological detection technology (such as fingerprint, iris, face recognition, etc. ) identification is a common method to realize entity identification.
Biometrics are highly unique and difficult to imitate, so efficient and reliable identity authentication can be realized.