Cipher-Based MAC Network Security.

Slides:



Advertisements
Similar presentations
Lecture 7 Overview. Advanced Encryption Standard 10, 12, 14 rounds for 128, 192, 256 bit keys – Regular Rounds (9, 11, 13) – Final Round is different.
Advertisements

CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.
1 Chapter 5 Hashes and Message Digests Instructor: 孫宏民 Room: EECS 6402, Tel: , Fax :
Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:
Chapter 4  Hash Functions 1 Overview  Cryptographic hash functions are functions that: o Map an arbitrary-length (but finite) input to a fixed-size output.
Cryptography and Network Security Chapter 12 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
Lecture 13 Message Signing
Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.
1 Hashes and Message Digests. 2 Hash Also known as –Message digest –One-way function Function: input message -> output One-way: d=h(m), but not h’(d)
Hash and MAC Functions CS427 – Computer Security
ISEP / Fakulta Elektrotecknika 1 Project Of Telecommunication Subject: Describe following “ MAC - Message Authentication Code " modes: Describe following.
Hash Functions Ramki Thurimella. 2 What is a hash function? Also known as message digest or fingerprint Compression: A function that maps arbitrarily.
Message Authentication Codes CSCI 5857: Encoding and Encryption.
CS480 Cryptography and Information Security Huiping Guo Department of Computer Science California State University, Los Angeles 13.Message Authentication.
Cryptography Hyunsung Kim, PhD University of Malawi, Chancellor College Kyungil University February, 2016.
Message Authentication Code
Chapter 12 – Hash Algorithms
G. Pullaiah College of Engineering and Technology
Cryptography and Network Security Chapter 12
Network Security Unit-III
CSCE 715: Network Systems Security
Blowfish Algorithm.
6b. Practical Constructions of Symmetric-Key Primitives.
Symmetric Algorithm of Cryptography
Message Authentication Code
Data Encryption Standard
Chapter 30 Cryptography Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.
Simplified IDEA Cryptography and Network Security.
NET 311 Information Security
Cryptography and Network Security Chapter 3
Cryptography Lecture 10.
Hash and MAC Algorithms
Cryptography and Network Security Chapter 12
Block Ciphers and the Data Encryption Standard (DES)
Cryptography and Network Security Chapter 12
ADVANCED ENCRYPTION STANDARDADVANCED ENCRYPTION STANDARD
SOFTWARE IMPLEMENTATION OF OCB MODE
Chapter -2 Block Ciphers and the Data Encryption Standard
SYMMETRIC ENCRYPTION.
Block Ciphers (Crypto 2)
Chapter -7 CRYPTOGRAPHIC HASH FUNCTIONS
Message Authentication Code
Cryptography Lecture 9.
DATA ENCRYPTION STANDARD (DES)
Cryptography Lecture 17.
Triple DES Network Security.
Basics Of Symmetric Encryption
Cryptanalysis Network Security.
Pseudorandom Numbers Network Security.
One-way Hash Function Network Security.
HMAC and its Design Objectives
Hash Function Requirements
The RSA Public-Key Encryption Algorithm
The Secure Hash Function (SHA)
Counter With Cipher Block Chaining-MAC
Counter Mode, Output Feedback Mode
Advanced Encryption Standard
Digital Signature Standard (DSS)
Elect. Codebook, Cipher Block Chaining
The RC4 Algorithm Network Security.
Stream Cipher Structure
A Model For Network Security
Key Exchange, Man-in-the-Middle Attack
Feistel Cipher Structure
Diffie-Hellman Algorithm
Message Authentication
Data Encryption Standard (DES)
Simple Hash Functions Network Security.
Secret-Key Encryption
Presentation transcript:

Cipher-Based MAC Network Security

Objectives of the Topic Cipher-Based MAC Objectives of the Topic After completing this topic, a student will be able to describe working of Cipher-based message authentication code.

Figures and material in this topic have been adapted from Cipher-Based MAC Figures and material in this topic have been adapted from “Network Security Essentials : Applications and Standards”, 2014, by William Stallings.

Message Authentication Code (MAC) Cipher-Based MAC Message Authentication Code (MAC) is a technique that involves the use of a secret key to generate a small block of data, known as a message authentication code , that is appended to the message.

Cipher-Based MAC

Cipher-based Message Authentication Code (CMAC): Cipher-Based MAC Cipher-based Message Authentication Code (CMAC): Is a message authentication code based on AES and triple DES. It is specified in NIST Special Publication 800-38B.

Message Length is Integer Multiple of Block Size: Cipher-Based MAC Message Length is Integer Multiple of Block Size: First, let us consider the operation of CMAC when the message is an integer multiple n of the cipher block length b.

Cipher-Based MAC For AES, b = 128, and for triple DES, b=64. The message is divided into n blocks (M1,M2, . . .,Mn).

Cipher-Based MAC The algorithm makes use of a k-bit encryption key K and an n-bit key, K1. For AES, the key size k is 128, 192, or 256 bits. For triple DES, the key size is 112 or 168 bits.

Cipher-Based MAC Lets assume that T is the message authentication code, also referred to as the tag Tlen = bit length of T MSBs(X) = the s leftmost bits of the bit string X.

Cipher-Based MAC Calculation of CMAC

Cipher-Based MAC Message Length is Integer Multiple of Block Size

Message Length is not Integer Multiple of Block Size: Cipher-Based MAC Message Length is not Integer Multiple of Block Size: In this case, the final block is padded to the right (least significant bits) with a 1 and as many 0s as necessary so that the final block is also of length b.

Cipher-Based MAC The CMAC operation then proceeds as before, except that a different n-bit key K2 is used instead of K1. To generate the two n-bit keys, the block cipher is applied to the block that consists entirely of 0 bits.

Cipher-Based MAC The first subkey is derived from the resulting ciphertext by a left shift of one bit and, conditionally, by XORing a constant that depends on the block size.

Cipher-Based MAC The second subkey is derived in the same manner from the first subkey.

Cipher-Based MAC Message Length is not Integer Multiple of Block Size

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.