Sciweavers

Free Online Productivity Tools i2Speak i2Symbol i2OCR iTex2Img iWeb2Print iWeb2Shot i2Type iPdf2Split iPdf2Merge i2Bopomofo i2Arabic i2Style i2Image i2PDF iLatex2Rtf Sci2ools

11

CRYPTO
2000
Springer

favoriteEmaildiscussreport

120views Cryptology» more CRYPTO 2000»

L-collision Attacks against Randomized MACs

13 years 9 months ago

L-collision Attacks against Randomized MACs

Download www.iacr.org

In order to avoid birthday attacks on message authentication schemes, it has been suggested that one add randomness to the scheme. One must be careful about how randomness is added, however. This paper shows that preﬁxing randomness to a message before running the message through an iterated MAC leads to an attack that takes only O 2(l+r)/3 + max{2l/2 , 2r/2 } queries to break, where l is the size of the MAC iteration output and r is the size of the preﬁxed randomness.

Michael Semanko

Real-time Traffic

Add Randomness | CRYPTO 2000 | Cryptology | Message Authentication | Randomness |

claim paper

Related Content

» How to Thwart Birthday Attacks against MACs via Small Randomness

» Slide Attacks on a Class of Hash Functions

» Smashing SQUASH0

» PasswordAuthenticated Key Exchange Based on RSA

» Provably Secure PasswordAuthenticated Key Exchange Using DiffieHellman

Post Info
More Details (n/a)

Added	02 Aug 2010
Updated	02 Aug 2010
Type	Conference
Year	2000
Where	CRYPTO
Authors	Michael Semanko

Comments (0)