Keying Merkle-Damgård at the Suffix

Keying Merkle-Damgård at the Suffix

A classical way to turn a cryptographic hash function into a MAC (message authentication code) function is by concatenating key and message and interpreting the result as a tag. For the Merkle-Damgård hash function construction, the approach to prepend the key to the message is known to be insecure...

Full description

Bibliographic Details
Main Author: Bart Mennink
Format: Article
Language:English
Published: Ruhr-Universität Bochum 2025-03-01
Series:IACR Transactions on Symmetric Cryptology
Subjects:
suffix keyed Merkle-Damgård
suffix blinded Merkle-Damgård
PRF
leakage resilience
SuKS
Online Access:https://tosc.iacr.org/index.php/ToSC/article/view/12072

Internet

https://tosc.iacr.org/index.php/ToSC/article/view/12072

Similar Items