eprint.iacr.org will be offline for approximately an hour for routine maintenance at 11pm UTC on Tuesday, April 16. We lost some data between April 12 and April 14, and some authors have been notified that they need to resubmit their papers.

Paper 2015/089

On the security margin of MAC striping

Thomas Eisenbarth, Aaron Meyerowitz, and Rainer Steinwandt

Abstract

MAC striping has been suggested as a technique to authenticate encrypted payloads using short tags. For an idealized MAC scheme, the probability of a selective forgery has been estimated as $\binom{\ell+m}{m}^{-1}\cdot 2^{-m}$, when utilizing MAC striping with $\ell$-bit payloads and $m$-bit tags. We show that this estimate is too optimistic. For $m\le\ell$ and any payload, we achieve a selective forgery with probability $\ge \binom{\ell+m}{m}^{-1}$, and usually many orders of magnitude more than that.

Metadata
Available format(s)
PDF
Category
Secret-key cryptography
Publication info
Preprint. MINOR revision.
Keywords
cryptanalysisMACMAC stripingselective forgery
Contact author(s)
teisenbarth @ wpi edu
meyerowi @ fau edu
rsteinwa @ fau edu
History
2015-02-16: received
Short URL
https://ia.cr/2015/089
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2015/089,
      author = {Thomas Eisenbarth and Aaron Meyerowitz and Rainer Steinwandt},
      title = {On the security margin of MAC striping},
      howpublished = {Cryptology ePrint Archive, Paper 2015/089},
      year = {2015},
      note = {\url{https://eprint.iacr.org/2015/089}},
      url = {https://eprint.iacr.org/2015/089}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.