Abstract
A new type of attack on message authentication codes (MACs) is introduced which takes advantage of possible weaknesses in interfaces to hardware security modules. In particular, if a module does not fix the degree of MAC truncation employed, then potentially serious attacks are possible.
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have