Movatterモバイル変換

[0]ホーム

Jump to content

Message authentication

Edit links

From Wikipedia, the free encyclopedia

System to verify the source and or authenticity of a message

This article'slead sectionmay be too short to adequatelysummarize the key points. Please consider expanding the lead toprovide an accessible overview of all important aspects of the article. The reason given is:it misses a summary of the content of each section(June 2024)

Ininformation security,message authentication ordata origin authentication is a property that a message has not been modified while in transit (data integrity) and that the receiving party can verify the source of the message.^[1]

Description

[edit]

Message authentication or data origin authentication is aninformation security property that indicates that a message has not been modified while in transit (data integrity) and that the receiving party can verify the source of the message.^[1] Messageauthentication does not necessarily include the property ofnon-repudiation.^[2]^[3]

Techniques

[edit]

Message authentication is typically achieved by usingmessage authentication codes (MACs),authenticated encryption (AE), ordigital signatures.^[2] The message authentication code, also known as digital authenticator, is used as an integrity check based on a secret key shared by two parties to authenticate information transmitted between them.^[4] It is based on using acryptographic hash orsymmetric encryption algorithm.^[5] The authentication key is only shared by exactly two parties (e.g. communicating devices), and the authentication will fail in the existence of a third party possessing the key since thealgorithm will no longer be able to detectforgeries (i.e. to be able to validate the unique source of the message).^[6] In addition, the key must also be randomly generated to avoid its recovery through brute-force searches and related-key attacks designed to identify it from the messages transiting the medium.^[6]

Some cryptographers distinguish between "message authentication without secrecy" systems – which allow the intended receiver to verify the source of the message, but they don't bother hiding the plaintext contents of the message – fromauthenticated encryption systems.^[7] Some cryptographers have researchedsubliminal channel systems that send messages that appear to use a "message authentication without secrecy" system, but in fact also transmit a secret message.

Related concepts

[edit]

Data origin authentication and non-repudiation have been also studied in the framework of quantum cryptography.^[8]^[9]

References

[edit]

^^a ^bMihir Bellare."Chapter 7: Message Authentication"(PDF).CSE 207: Modern Cryptography. Lecture notes for cryptography course. Archived fromthe original(PDF) on 2018-10-09. Retrieved2015-05-11.
^^a ^bAlfred J. Menezes;Paul C. van Oorschot;Scott A. Vanstone."Chapter 9 - Hash Functions and Data Integrity"(PDF).Handbook of Applied Cryptography. p. 361.Archived from the original on 2021-02-03. Retrieved2015-05-11.
^"Data Origin Authentication".Web Service Security.Microsoft Developer Network. 14 July 2010.Archived from the original on 19 May 2017. Retrieved11 May 2015.
^Patel, Dhiren (2008).Information Security: Theory and Practice. New Delhi: Prentice Hall India Private Lt. p. 124.ISBN 978-81-203-3351-2.
^Jacobs, Stuart (2011).Engineering Information Security: The Application of Systems Engineering Concepts to Achieve Information Assurance. Hoboken, NJ: John Wiley & sons. p. 108.ISBN 978-0-470-56512-4.
^^a ^bWalker, Jesse (2013). "Chapter 13 – Internet Security". In Vacca, John R. (ed.).Computer and Information Security Handbook (3rd ed.). Morgan Kaufmann Publishers. pp. 256–257.doi:10.1016/B978-0-12-803843-7.00013-2.ISBN 978-0-12-803843-7.
^Longo, G.; Marchi, M.; Sgarro, A. (4 May 2014).Geometries, Codes and Cryptography. Springer. p. 188.ISBN 978-3-7091-2838-1.Archived from the original on 9 January 2024. Retrieved8 July 2015.
^Pirandola, S.; Andersen, U. L.; Banchi, L.; Berta, M.; Bunandar, D.; Colbeck, R.; Englund, D.; Gehring, T.; Lupo, C.; Ottaviani, C.; Pereira, J. (2020). "Advances in Quantum Cryptography".Advances in Optics and Photonics.12 (4):1012–1236.arXiv:1906.01645.Bibcode:2020AdOP...12.1012P.doi:10.1364/AOP.361502.S2CID 174799187.
^Nikolopoulos, Georgios M.; Fischlin, Marc (2020)."Information-Theoretically Secure Data Origin Authentication with Quantum and Classical Resources".Cryptography.4 (4): 31.arXiv:2011.06849.doi:10.3390/cryptography4040031.S2CID 226956062.

v t e Cryptographic hash functions andmessage authentication codes
List Comparison Known attacks
Common functions	MD5 (compromised) SHA-1 (compromised) SHA-2 SHA-3 BLAKE2
SHA-3 finalists	BLAKE Grøstl JH Skein Keccak (winner)
Other functions	BLAKE3 CubeHash ECOH FSB Fugue GOST HAS-160 HAVAL Kupyna LSH Lane MASH-1 MASH-2 MD2 MD4 MD6 MDC-2 N-hash RIPEMD RadioGatún SIMD SM3 SWIFFT Shabal Snefru Streebog Tiger VSH Whirlpool
Password hashing/ key stretching functions	Argon2 Balloon bcrypt Catena crypt LM hash Lyra2 Makwa PBKDF2 scrypt yescrypt
General purpose key derivation functions	HKDF KDF1/KDF2
MAC functions	CBC-MAC DAA GMAC HMAC NMAC OMAC/CMAC PMAC Poly1305 SipHash UMAC VMAC
Authenticated encryption modes	CCM ChaCha20-Poly1305 CWC EAX GCM IAPM OCB
Attacks	Collision attack Preimage attack Birthday attack Brute-force attack Rainbow table Side-channel attack Length extension attack
Design	Avalanche effect Hash collision Merkle–Damgård construction Sponge function HAIFA construction
Standardization	CAESAR Competition CRYPTREC NESSIE NIST hash function competition Password Hashing Competition NSA Suite B CNSA
Utilization	Hash-based cryptography Merkle tree Message authentication Proof of work Salt Pepper

v t e Cryptography
General	History of cryptography Outline of cryptography Classical cipher Cryptographic protocol Authentication protocol Cryptographic primitive Cryptanalysis Cryptocurrency Cryptosystem Cryptographic nonce Cryptovirology Hash function Cryptographic hash function Key derivation function Secure Hash Algorithms Digital signature Kleptography Key (cryptography) Key exchange Key generator Key schedule Key stretching Keygen Machines Ransomware Random number generation Cryptographically secure pseudorandom number generator (CSPRNG) Pseudorandom noise (PRN) Secure channel Insecure channel Subliminal channel Encryption Decryption End-to-end encryption Harvest now, decrypt later Information-theoretic security Plaintext Codetext Ciphertext Shared secret Trapdoor function Trusted timestamping Key-based routing Onion routing Garlic routing Kademlia Mix network
Mathematics	Cryptographic hash function Block cipher Stream cipher Symmetric-key algorithm Authenticated encryption Public-key cryptography Quantum key distribution Quantum cryptography Post-quantum cryptography Message authentication code Random numbers Steganography
Category