Deck 12: Message Authentication Codes

A brute-force attack on a MAC is easier than a brute-force attack on a hash function.

Message authentication is a mechanism or service used to verify the integrity of a message.

Message encryption by itself cannot provide a measure of authentication.

The MAC does not provide a digital signature because both sender and receiver share the same key.

If the calculated frame check sequence is equal to the incoming frame check sequence the message is considered authentic.

The straightforward use of public-key encryption provides confidentiality and authentication.

One means of forming a MAC is to combine a cryptographic hash function in some fashion with a secret key.

Message authentication may also verify sequencing and timeliness.

The order in which the frame check sequence and encryption functions are performed is not critical for authentication.

An important characteristic of the MAC algorithm is that it needs to be reversible.

To attack MD5,the attacker can choose any set of messages and work on these offline on a dedicated computing facility to find a collision.

As with encryption algorithms and hash functions cryptanalytic attacks on MAC algorithms seek to exploit some property of the algorithm to perform some attack other than an exhaustive search.

A recipient in possession of the secret key cannot generate an authentication code to verify the integrity of the message.

The security of any MAC function based on an embedded hash function depends in some way on the cryptographic strength of the underlying hash function.

A CTR-based authenticated encryption approach is the most efficient mode of operation for high-speed packet networks.

Attacks on MACs can be grouped into two categories: brute-force attacks and __________ .

Any modification to a sequence of messages between parties,including insertion,deletion,and reordering is a __________ attack.

An alternative authentication technique involves the use of a secret key to generate a small fixed size block of data known as a __________ or MAC that is appended to the message.

The types of functions that may be used to produce an authenticator are grouped into three classes: hash function,message authentication code,and ___________ .

When an entire message is encrypted for confidentiality using either symmetric or asymmetric encryption the security of the scheme generally depends on the __________ of the key.

__________ assures that data received are exactly as sent and that the purposed identity of the sender is valid.

The __________ algorithm can be defined as using the cipher block chaining mode of operation of DES with an initialization vector of zero.

A __________ takes a variable length message and a secret key as input and produces an authentication code.

Discovery of the pattern of traffic between parties is a __________ attack.

One approach to constructing a MAC is to use a symmetric block cipher in such a way that it produces a __________ output for a variable length input.

HMAC is a widely used standardized _________ function and is implemented in many protocols and applications.

NIST SP 800-90,IEEE 802.11i,and TLS/WTLS are three ____________ based on HMAC.

___________ is a term used to describe encryption systems that simultaneously protect confidentiality and authenticity of communications.

The __________ mode of operation was standardized by NIST specifically to support the security requirements of IEEE 802.1 WiFi wireless local area networks but can be used in any networking application requiring authenticated encryption.

The HtE approach is used in the __________ protocol to protect WiFi networks.