Question: Problem 4 (10 pts) Message Authentication Code (MAC) a (3 pts) When we say that an MAC needs to resist Existential Forgery under Chosen Plaintext

Problem 4 (10 pts) Message Authentication Code (MAC) a (3 pts)

Problem 4 (10 pts) Message Authentication Code (MAC) a (3 pts) When we say that an MAC needs to resist Existential Forgery under Chosen Plaintext At- tack, what do we mean? State the precise definition. b (3 pts) Consider the following MAC construction that uses AES. Given a message M, it is padded to so that its length in bits is a multiple of 128, and divided into blocks of 128 bits each: M1, M2, ..., Me. The MAC value under a key k is defined as M ACk(M) = AESk(Mi) 0 AESk(M2) 0 AESk(Me). Show that this MAC construction is insecure by giving a concrete attack. c(4 pts) Consider another MAC construction that uses AES. We limit ourselves to consider mes- sages whose lengths are multiple of 96 bits, and are at most 232 x 96 bits long. Given a message M, it is divided into blocks of 96 bits each: M1, M2, ..., Me. Each Mi is then padded to 128 bits by including the binary encoding of i in the beginning of each block M;. We use M to denote the padded blocks. The MAC value under a key k is defined as MACk(M) AES (M) AES (M) ... AES (M). Show that this MAC construction is insecure by giving a concrete attack. =

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Q:

1) We can design a MAC function that generates MAC tags as follows: Select one: a. All the options b. Use AES or 3DES in CFB mode c. Use a hash function along with a secret shared key d. Use AES or...

Q:

Describe, in detail, how the heapsort algorithm works. [10 marks] Show that the worst-case cost of heapsort is O(n log n). [6 marks] Would it be possible to implement a variant of heapsort based on a...

Q:

1) We can design a MAC function that generates MAC tags as follows: Select one: a. All the options b. Use AES or 3DES in CFB mode c. Use a hash function along with a secret shared key d. Use AES or...

Q:

ANSI-SPARC6 Programming Language Compilation Write notes on each of the following topics: (a) the implementation of labels and jumps in a recursive, block structured programming language [7 marks]...

Q:

s1 educated (SSE) student for every three public school educated (PSE) students. Reasoning that students are not very dissimilar from threads, he suggests the following entry and exit routines be...

Q:

This question concerns lexical grammars. (a) Tree Adjoining Grammars contain two types of elementary tree. (i) What are these trees called? [1 mark] (ii) If one were building a grammar for English...

Q:

This question involves the use of AGGREGATE linear PYTHOIN regression on the Auto data set. (a) Perform a simple linear regression with mpg as the response and horsepower as the predictor. Describe...

Q:

Will it ever be good enough? That was the key question facing Apple Inc., (Apple) the California-based multinational technology company that was known for its innovative hardware, software, and...

Q:

uiz 2 SHOW ALL WORK to receive credit. 1. 3 pts. Use the sum or difference identities to evaluate exactly (no decimal approximations): cos285 2. In questions 2A, 2B, 2C, and 2D below, find the exact...

Q:

Solutions to STAT 300 Sample Midterm Exam Problem 1 (11 pts). Circle the answer which is the closest to the correct answer (choose one answer only, unless indicated otherwise). 1. (3 pts) In a...

Q:

The vice president of marketing brought to the attention of sales managers that most of the companys manufacturer representatives contacted clients and maintained client relationships in a...

Q:

For each of the three independent situations below determine the amount of the annual lease payments. Each describes finance lease in which annual lease payments are payable at the beginning of each...

Q:

Each of the following scenarios is independent. Assume that all cash flows are after-tax cash flows. a. Campbell Manufacturing is considering the purchase of a new welding system. The cash benefits...

Q:

Compared with half a century ago, adoption has become _ _ _ _ _ _ _ _ _ common, but it is more open and acceptabl e , so we probably discuss it _ _ _ _ _ _ _ . fill in the blanks more or much less or...

Q:

3 If separate parts of the PressCo factory were dedicated to production for WestCo and for EastCo, which would be the more efficient in terms of labour costs and inventory holding? A problem that is...

Q:

1 What are the logistics implications to PressCo for delivery reliability to customers WestCo and EastCo? A problem that is all too familiar to suppliers in the automotive industry is that of...

Q:

1 What were the order winners and order qualifiers at TA? Talleres Auto (TA) is an SME based in Barcelona. TA attends to broken-down vehicles, providing a roadside repair and recovery service. Two of...