a server uses a challenge-response protocol to authenticate users. the server stores the legitimate users' public key. each time when a user wants to login, the server generates a random challenge and sends it to the user. the user then generates a digital signature on his/her workstation and sends the digital signature to the server. the server authenticates the user by verifying his/her signature on the random message. describe an attack against the server.

Challenge-response authentication is a family of protocols used in computer security in which one party poses a query ("challenge") and another party must respond with an accurate response ("response") in order to be authenticated. What are server-side attacks?Server-side assaults, also known as service-side attacks, are directed at a listening service directly from the attacker (the client).The "Conficker" worm of 2008 and afterwards spread through a variety of techniques, including a server-side assault on TCP port 445 that took use of an RPC service vulnerability. Similar to how "client side" refers to activity taking place on the client, "server side" refers to activity taking place on the server.Previously, almost all business logic—including that used to create dynamic webpages, communicate with databases, authenticate identities, and send push notifications—ran on the server side. Developers can employ sessions, a method that lets a server keep data on the current user of a site and send various answers in reaction to that data, thanks to server-side programming. A method of authentication in which the verifier sends the claimant a challenge (typically a random number or a nonce), which the claimant then combines with a secret (often by hashing the challenge with a shared secret or by applying a private key operation to the challenge) to produce a response that is sent to the verifier To learn more about challenge-response authentication referhttps://brainly.com/question/14701454#SPJ4