Paper 2008/542

Distinguishing Attack and Second-Preimage Attack on the CBC-like MACs

Keting Jia, Xiaoyun Wang, Zheng Yuan, and Guangwu Xu

Abstract

In this paper, we first present a new distinguisher on the CBC-MAC based on a block cipher in Cipher Block Chaining (CBC) mode. It can also be used to distinguish other CBC-like MACs from random functions. The main results of this paper are on the second-preimage attack on CBC-MAC and CBC-like MACs include TMAC, OMAC, CMAC, PC-MAC and MACs based on three-key encipher CBC mode. Instead of exhaustive search, this attack can be performed with the birthday attack complexity.

Metadata
Available format(s)
PDF
Category
Secret-key cryptography
Publication info
Published elsewhere. Unknown where it was published
Keywords
CBCMACDistinguishing attackSecond preimage
Contact author(s)
xiaoyunwang @ mail tsinghua edu cn
History
2009-01-13: last of 5 revisions
2008-12-28: received
See all versions
Short URL
https://ia.cr/2008/542
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2008/542,
      author = {Keting Jia and Xiaoyun Wang and Zheng Yuan and Guangwu Xu},
      title = {Distinguishing Attack and Second-Preimage Attack on the CBC-like MACs},
      howpublished = {Cryptology ePrint Archive, Paper 2008/542},
      year = {2008},
      note = {\url{https://eprint.iacr.org/2008/542}},
      url = {https://eprint.iacr.org/2008/542}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.