HMAC: What is the use of a server nonce on top of using a client nonce?
What I understand from the stack question:
“What is the use of a client nonce?”, is that nonce cannot be trusted since the malicious attacker can act as the server himself and send the same nonce over and over. Making it pos… Continue reading HMAC: What is the use of a server nonce on top of using a client nonce?