Deck 12: Message Authentication Codes

An important characteristic of the MAC algorithm is that it needs
to be reversible.

A brute-force attack on a MAC is easier than a brute-force attack
on a hash function.

the security of any MAC function based on an embedded hash
function depends in some way on the cryptographic strength of
the underlying hash function.

the order in which the frame check sequence and encryption
functions are performed is not critical for authentication.

Message encryption by itself cannot provide a measure of
authentication.

Message authentication is a mechanism or service used to verify
the integrity of a message.

Message authentication may also verify sequencing and timeliness.

the straightforward use of public-key encryption provides
confidentiality and authentication.

As with encryption algorithms and hash functions cryptanalytic
attacks on MAC algorithms seek to exploit some property of the
algorithm to perform some attack other than an exhaustive
search.

If the calculated frame check sequence is equal to the incoming
frame check sequence the message is considered authentic.

the MAC does not provide a digital signature because both sender
and receiver share the same key.

A CtR-based authenticated encryption approach is the most
efficient mode of operation for high-speed packet networks.

to attack MD5, the attacker can choose any set of messages and
work on these offline on a dedicated computing facility to find a
collision.

One means of forming a MAC is to combine a cryptographic hash
function in some fashion with a secret key.

the types of functions that may be used to produce an authenticator are grouped into three classes: hash function, message authentication code, and ___________ .

the __________ algorithm can be defined as using the cipher block chaining mode of operation of DES with an initialization vector of zero.

An alternative authentication technique involves the use of a secret key to generate a small fixed size block of data known as a __________ or MAC that is appended to the message.

Attacks on MACs can be grouped into two categories: brute-force attacks and __________ .

Any modification to a sequence of messages between parties, including insertion, deletion, and reordering is a __________ attack.

__________ assures that data received are exactly as sent and that the purposed identity of the sender is valid.

When an entire message is encrypted for confidentiality using either symmetric or asymmetric encryption the security of the scheme generally depends on the __________ of the key.

A __________ takes a variable length message and a secret key as input and produces an authentication code.

Discovery of the pattern of traffic between parties is a __________ attack.

One approach to constructing a MAC is to use a symmetric block cipher in such a way that it produces a __________ output for a variable length input.

HMAC is a widely used standardized _________ function and is implemented in many protocols and applications.

the __________ mode of operation was standardized by NISt specifically to support the security requirements of IEEE 802.1 WiFi wireless local area networks but can be used in any networking application requiring authenticated encryption.

the HE approach is used in the __________ protocol to protect WiFi networks.

NISt SP 800-90, IEEE 802.11i, and tLS/WtLS are three ____________ based on HMAC.

___________ is a term used to describe encryption systems that simultaneously protect confidentiality and authenticity of communications.