OMAC is a provably secure MAC scheme which NIST currently intends to specify as the modes recommendation. In August 2003, Mitchell proposed a variant of OMAC. We call it OMAC1. In this paper, we prove that OMAC1 is less secure than original OMAC.We show a security gap between them. As a result, we obtain a negative answer to Mitchell’s open question — OMAC1 is not provably secure even if the underlying block cipher is a PRP.
CITATION STYLE
Iwata, T., & Kurosawa, K. (2004). On the security of a new variant of omac. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 2971, pp. 67–78). Springer Verlag. https://doi.org/10.1007/978-3-540-24691-6_6
Mendeley helps you to discover research relevant for your work.