views:

6

answers:

0

I found many questions on stackoverflow which has a mention about digest authentication. I could not find on how does the digest authentication prevent replay attacks? I use the fiddler tool to intercept the http request to the servers. I used the same tool for replaying the requests to the server but the server asked for authentication.

I need to understand exactly on how prevention of replay attack is achieved. How the server is able to detect any replay of http requests?

Any links/resources would be appreciated.