In PVP-UAB, man-in-the-middle attacks are avoided by linking the Diffie Hellman process with the hardware authentication process. Some of the bits of the Diffie Hellman number are used to form a seed to use in the HFS process that authenticates the graphics hardware.
|
|
It is left to the graphics hardware manufacturer to decide which bits to choose to use as the seed.
The HFS requirement in PVP-UAB is an extension of the requirement in PVP-OPM. The difference is that PVP-OPM (in the discrete graphics case) just requires the use of a random seed, whereas HFS in PVP-UAB requires the use of a seed from the Diffie Hellman number.
This seeding process locks the session key to the authentication, and thus avoids a man-in-the-middle attack.
|
