Hi Miyamoto,
The one-way authentication means the A1006 proves it is authentic to anybody, the A1006 cannot check who is challenging it. The Hosts sends a challenge the A1006 answers through the knowledge of the asymmetric secret with a answer which the host can check with the public part of the asymmetric secret.
The A71CH when forming an encrypting channel is doing the authentication in both directions using symmetric cryptography. In that form the host first proves that it knows the secret key to the A71CH and then the A71CH answers with a prove that it also knows the secret key. This means both parties can be sure that the other side has knowledge of the secret.
The A71CH also can do one-way authentication like the A1006 using the asymmetric secrets – so it can sign a challenge presented by the host and the host checks then this signature against the public key.
Hope that helps,
Have a great day,
Kan
-----------------------------------------------------------------------------------------------------------------------
Note: If this post answers your question, please click the Correct Answer button. Thank you!
-----------------------------------------------------------------------------------------------------------------------
