![[OpenID enabled]](http://lid.netmesh.org/images/openid-relying-party-anonymous.gif)
![[XRI enabled]](http://lid.netmesh.org/images/inames.gif)
![[LID enabled]](http://lid.netmesh.org/images/lid-relying-party-anonymous.gif)
Replay Attack
From LID Wiki
In a LID context, a Replay Attack is an attack where an attacker
- first: obtains a copy of a valid message that was sent from a LID Client to a LID Server, and
- second: replays the message to the LID Server at some later time.
For example, all login screens (LID or not) are susceptible to Replay Attacks: if an attacker is successful in obtaining a copy of the username and password that the user used to log on, he can log on himself at some later time, successfully pretending to be the user.
LID uses unique nonces (parameter lid-nonce) to prevent Replay Attacks.
