[11919] in cryptography@c2.net mail archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Why is RMAC resistant to birthday attacks?

daemon@ATHENA.MIT.EDU (Ed Gerck)
Thu Oct 24 10:13:37 2002

Date: Wed, 23 Oct 2002 19:41:52 -0700
From: Ed Gerck <egerck@nma.com>
To: David Wagner <daw@mozart.cs.berkeley.edu>
Cc: cryptography@wasabisystems.com



David Wagner wrote:

> Ed Gerck  wrote:
> >(A required property of MACs is providing a uniform distribution of values for a
> >change in any of the input bits, which makes the above sequence extremely
> >improbable)
>
> Not so.  This is not a required property for a MAC.
> (Not all MACs must be PRFs.)

Thanks. I should have written "a usually required property". In general,
to have a good MAC, we require a good PRF.

Ed Gerck


---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@wasabisystems.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[11919] in cryptography@c2.net mail archive

Re: Why is RMAC resistant to birthday attacks?

daemon@ATHENA.MIT.EDU (Ed Gerck)Thu Oct 24 10:13:37 2002

daemon@ATHENA.MIT.EDU (Ed Gerck)
Thu Oct 24 10:13:37 2002