Paper 2007/131

Noninteractive Manual Channel Message Authentication Based On eTCR Hash Functions

Mohammad Reza Reyhanitabar, Shuhong Wang, and Reihaneh Safavi-Naini

Abstract

We present a new non-interactive message authentication protocol in manual channel model (NIMAP, for short) using the weakest assumption on the manual channel (i.e. assuming the strongest adversary). Our protocol uses enhanced target collision resistant (eTCR) hash family and is provably secure in the standard model. We compare our protocol with protocols with similar properties and show that the new NIMAP has the same security level as the best previously known NIMAP whilst it is more practical. In particular, to authenticate a message such as a 1024-bit public key, we require an eTCR hash family that can be constructed from any off-the-shelf Merkle-Damgård hash function using randomized hashing mode. The underlying compression function must be {\em evaluated second preimage resistant} (eSPR), which is a strictly weaker security property than collision resistance. We also revisit some closely related security notions for hash functions and study their relationships to help understanding our protocol.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Published elsewhere. Accepted to ACISP 2007, this is the full version.
Keywords
Authenticationmanual channelhash functionsecurity
Contact author(s)
godintears @ gmail com
History
2007-05-10: revised
2007-04-18: received
See all versions
Short URL
https://ia.cr/2007/131
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2007/131,
      author = {Mohammad Reza Reyhanitabar and Shuhong Wang and Reihaneh Safavi-Naini},
      title = {Noninteractive Manual Channel  Message Authentication Based On {eTCR} Hash Functions},
      howpublished = {Cryptology {ePrint} Archive, Paper 2007/131},
      year = {2007},
      url = {https://eprint.iacr.org/2007/131}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.