Security of message authentication codes in the presence of key-dependent messages

Authors:
Madeline González Muñiz;Rainer Steinwandt
Affiliations:
Cybernetica AS, Tallinn, Estonia;Florida Atlantic University, Boca Raton, USA
Venue:
Designs, Codes and Cryptography
Year:
2012

Citing 15
Cited 0

Handbook of Applied Cryptography

Handbook of Applied Cryptography
Encryption-Scheme Security in the Presence of Key-Dependent Messages

SAC '02 Revised Papers from the 9th Annual International Workshop on Selected Areas in Cryptography
The Security of Cipher Block Chaining

CRYPTO '94 Proceedings of the 14th Annual International Cryptology Conference on Advances in Cryptology
Authenticated Encryption: Relations among Notions and Analysis of the Generic Composition Paradigm

ASIACRYPT '00 Proceedings of the 6th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
On the Security of Randomized CBC-MAC Beyond the Birthday Paradox Limit: A New Construction

FSE '02 Revised Papers from the 9th International Workshop on Fast Software Encryption
Key-dependent Message Security under Active Attacks--BRSIM/UC-Soundness of Symbolic Encryption with Key Cycles

CSF '07 Proceedings of the 20th IEEE Computer Security Foundations Symposium
Security under key-dependent inputs

Proceedings of the 14th ACM conference on Computer and communications security
Leakage-Resilient Cryptography

FOCS '08 Proceedings of the 2008 49th Annual IEEE Symposium on Foundations of Computer Science
On the (Im)Possibility of Key Dependent Encryption

TCC '09 Proceedings of the 6th Theory of Cryptography Conference on Theory of Cryptography
Signature Schemes with Bounded Leakage Resilience

ASIACRYPT '09 Proceedings of the 15th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Forward-security in private-key cryptography

CT-RSA'03 Proceedings of the 2003 RSA conference on The cryptographers' track
Towards key-dependent message security in the standard model

EUROCRYPT'08 Proceedings of the theory and applications of cryptographic techniques 27th annual international conference on Advances in cryptology
Leakage-resilient signatures

TCC'10 Proceedings of the 7th international conference on Theory of Cryptography
On the security of HMAC and NMAC based on HAVAL, MD4, MD5, SHA-0 and SHA-1 (extended abstract)

SCN'06 Proceedings of the 5th international conference on Security and Cryptography for Networks
On the security of iterated message authentication codes

IEEE Transactions on Information Theory

Quantified Score

Hi-index	0.00

Visualization

Abstract

In recent years, the security of encryption and signature schemes in the presence of key-dependent plaintexts received attention, and progress in understanding such scenarios has been made. In this article we motivate and discuss a setting where an adversary can access tags of a message authentication code (MAC) on key-dependent message inputs, and we propose a way to formalize the security of MACs in the presence of key-dependent messages (KD驴EUF). Like signature schemes, MACs have a verification algorithm, and hence the tagging algorithm must be stateful. We present a scheme MAC-ver which offers KD驴EUF security and also yields a forward-secure scheme.