Scribd Logo
Upload

Welcome to Scribd!

  • Lecture 16 Message Authentication & MAC

    Uploaded by

    Prateek Sharma
    28 views15 pages
    The document discusses three main topics in information security: confidentiality, data integrity, and authentication. It focuses on various authentication functions including message encryption, message authentication codes (MACs), and hash functions. MACs are described as producing a cryptographic checksum to authenticate messages using a secret symmetric key. Properties of MACs include providing message integrity and authentication through a fixed-length tag. Hash functions similarly map a message to a fixed-length hash value to serve as an authenticator without requiring a shared key.

    Original Description:

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document discusses three main topics in information security: confidentiality, data integrity, and authentication. It focuses on various authentication functions including message encryption, message authentication codes (MACs), and hash functions. MACs are described as producing a cryptographic checksum to authenticate messages using a secret symmetric key. Properties of MACs include providing message integrity and authentication through a fixed-length tag. Hash functions similarly map a message to a fixed-length hash value to serve as an authenticator without requiring a shared key.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    28 views15 pages

    Lecture 16 Message Authentication & MAC

    Uploaded by

    Prateek Sharma
    The document discusses three main topics in information security: confidentiality, data integrity, and authentication. It focuses on various authentication functions including message encryption, message authentication codes (MACs), and hash functions. MACs are described as producing a cryptographic checksum to authenticate messages using a secret symmetric key. Properties of MACs include providing message integrity and authentication through a fixed-length tag. Hash functions similarly map a message to a fixed-length hash value to serve as an authenticator without requiring a shared key.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 15

    INFORMATION

    SECURITY
    (CSD-410)
    (Lecture 16)
    CONFIDENTIALITY, AUTHENTICATION AND
    DATA INTEGRITY
    ▪ Confidentiality:
    ▪ To protect the information from being accessed by unauthorized person.
    ▪ Only the authorized people can gain the access of sensitive data.

    ▪ Data integrity:
    ▪ The overall completeness, accuracy and consistency of data must occur throughout its life
    cycle.
    ▪ Ensured that data cannot be altered by unauthorized person.

    ▪ Authentication:
    ▪ Verifying the user identity.
    ▪ Used to ensure that a person is communicating with the actual person.
    AUTHENTICATION FUNCTIONS
    ▪ Message authentication is concerned with:
    ▪ Protecting the integrity of a message
    ▪ Validating identity of originator
    ▪ Non‐repudiation of origin

    ▪ Any message authentication mechanism can be viewed as having fundamentally


    two levels :
    1. At the lower level, there may be some sort of function that produces an authenticator: a value
    to be used to authenticate a message.
    2. At higher level, the lower layer function is then used as primitive in a higher-layer
    authentication protocol that enables a receiver to verify the authenticity of a message.
    AUTHENTICATION FUNCTIONS
    ▪ An authenticator is used to authenticate the message.

    ▪ Following functions can be used to produce an authenticator:-

    ▪ Message encryption

    ▪ Message authentication code (MAC)

    ▪ Hash function
    1. MESSAGE ENCRYPTION
    ▪ The cipher text of the entire message serves as its authenticator.

    ▪ This analysis differs from symmetric and public key encryption schemes.
    2. MESSAGE AUTHENTICATION CODE (MAC)
    ▪ A public function of the message and a secret key that produces a fixed

    length value serves as the authenticator.

    ▪ The MAC of the entire message serves as its authenticator.


    PROPERTIES OF MESSAGE AUTHENTICATION
    CODES
    1. Cryptographic checksum: A MAC generates a cryptographically secure authentication tag
    for a given message.

    2. Symmetric: MACs are based on secret symmetric keys. The signing and verifying parties
    must share a secret key.

    3. Arbitrary message size: MACs accept messages of arbitrary length.

    4. Fixed output length MACs: generate fixed-size authentication tags.

    5. Message integrity: MACs provide message integrity: Any manipulations of a message during
    transit will be detected by the receiver.

    6. Message authentication: The receiving party is assured of the origin of the message.

    7. No nonrepudiation: Since MACs are based on symmetric principles, they do not provide
    nonrepudiation.
    MAC FOR AUTHENTICATION
    This authentication technique involves the use of secret key to generate a small fixed size block of data,
    known as cryptographic checksum or MAC.

    MAC .is appended to the message.

    This technique assumes that two communication parties say A and B, share a common secret key ‘k’.

    When A has to send a message to B, it calculates the MAC as a function of the message and the key.

    MAC = CK(M)

    where, M – input message C – MAC function K – Shared secret key.

    ▪ The message plus MAC are transmitted to the intended recipient.

    ▪ The recipient performs the same calculation on the received message, using the shared secret key, to
    generate a new MAC.

    ▪ The received MAC is compared to the calculated MAC. If it is equal, then the message is considered
    authentic.
    MAC FOR AUTHENTICATION
    A MAC function is similar to encryption.

    One difference is that MAC algorithm need not be reversible, as it must for
    decryption.

    In general, the MAC function is a many- to-one function.


    MAC FOR AUTHENTICATION
    MAC FOR AUTHENTICATION
    MAC FOR AUTHENTICATION &
    CONFIDENTIALITY
    (TIED TO PLAIN TEXT)
    MAC FOR AUTHENTICATION &
    CONFIDENTIALITY
    (TIED TO CIPHER TEXT)
    3. HASH FUNCTION
    ▪ A public function that maps a message of any length into a fixed length

    hash value, which serves as the authenticator.

    ▪ A variation on the message authentication code is the one way hash function.

    ▪ As with MAC, a hash function accepts a variable size message M as input and produces a
    fixed-size output, referred to as hash code H(M).

    ▪ Unlike a MAC, a hash code does not use a key but is a function only of the input message.
    The hash code is also referred to as a message digest or hash value.

    You might also like