论文信息 - Key Recovery and Forgery Attacks on the MacDES MAC Algorithm

Key Recovery and Forgery Attacks on the MacDES MAC Algorithm

We describe a series of new attacks on a CBC-MAC algorithm due to Knudsen and Preneel including two key recovery attacks and a forgery attack. Unlike previous attacks, these techniques will work when the MAC calculation involves prefixing the data to be MACed with a 'length block'. These attack methods provide new (tighter) upper bounds on the level of security offered by the MacDES technique.

Chris J. Mitchell | Lars R. Knudsen | Don Coppersmith

[1] Bart Preneel,et al. MacDES: MAC algorithm based on DES , 1998 .

[2] Chris J. Mitchell,et al. New CBC-MAC Forgery Attacks , 2001, ACISP.

[3] Alfred Menezes,et al. Handbook of Applied Cryptography , 2018 .

[4] Lars R. Knudsen,et al. Chosen-text attack on CBC-MAC , 1997 .

[5] Don Coppersmith,et al. Attacks on MacDES MAC algorithm , 1999 .

[6] J. Spencer. Ten lectures on the probabilistic method , 1987 .

[7] Bart Preneel,et al. On the Security of Iterated Message Authentication Codes , 1999, IEEE Trans. Inf. Theory.

[8] Joel Spencer. Ten Lectures on the Probabilistic Method: Second Edition , 1994 .