BREAKING AND REPAIRING AN APPROXIMATE MESSAGE AUTHENTICATION SCHEME

Traditional hash functions are designed to protect against even the slightest modification of a message. Thus, one bit changed in a message would result in a totally different message digest when a hash function is applied. This feature is not suitable for applications whose message spaces admit a certain fuzziness, such as multimedia communications or biometric authentication applications. In these applications, approximate hash functions must be designed so that the distance between messages are proportionally reflected in the distance between message digests. Most of the previous designs of approximate hash functions employ traditional hash functions. In an ingenious approximate message authentication scheme for an N-ary alphabet recently proposed by Ge, Arce and Crescenzo, the approximate hash functions are based on the majority selection function. This scheme is suitable for N-ary messages with arbitrary alphabet size N. In this paper, we show a hidden property of the majority selection function, which allows us to successfully break this scheme. We show that an adversary, by observing just one message and digest pair, without any knowledge of the secret information, can generate N - 1 new valid message and digest pairs. In order to resist the attack, we propose some modifications to the original design. The corrected scheme is as efficient as the original scheme and it is secure against the attack. By a new combinatorial approach, we calculate explicitly the security parameters of the corrected scheme.

Download Full-text

Cryptanalysis of a Fragile Watermark Based H.264/AVC Video Authentication Scheme

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.145.552 ◽

2011 ◽

Vol 145 ◽

pp. 552-556 ◽

Cited By ~ 3

Author(s):

Grace C.W. Ting ◽

Bok Min Goi ◽

S. W. Lee

Keyword(s):

Hash Function ◽

Hash Functions ◽

Authentication Scheme ◽

The Internet ◽

Message Authentication ◽

High Definition ◽

Video Authentication ◽

Fragile Watermark ◽

Private Key ◽

Watermark Embedding

H.264/AVC is a widespread standard for high definition video (HD) for example DVD and HD videos on the internet. To prevent unauthorized modifications, video authentication can be used. In this paper, we present a cryptanalysis of a H.264/AVC video authentication scheme proposed by Saadi et al. [1] at EUSIPCO 2009. Our result will prevent situations where newer schemes are developed from the scheme thus amplifying the flaw. The designers claimed that the scheme can detect modifications on watermarked video. However, we show that an attacker can modify the watermarked video and compute a valid watermark such that the recipient will retrieve a watermark from the modified watermarked video that will match what the recipient computes during video authentication check. Thus, the recipient will think the tampered video is authentic. The first main problem of the scheme is its use of hash functions for watermark generation. Since hash functions are public functions not depending on any secret, the attacker can modify the watermarked video and feed this through the hash function to compute a new watermark. The second problem is that it is possible for the attacker to perform watermark embedding thus producing a modified watermarked video. On receiving the modified video, the recipient recomputes the watermark and compares this with the watermark extracted from the video. They will match because the embedded watermark and recomputed watermark use the same hash function based watermark generation and the same input i.e. the modified video. Our cryptanalysis strategy applies to any watermarking based video authentication scheme where the watermark and embedding are not functions of secrets. As countermeasure, the functions should be designed so that only legitimate parties can perform them. We present two improved schemes that solve this problem based on private key signing functions and message authentication functions respectively.

Download Full-text

Hash Functions and Their Applications

Algorithmic Strategies for Solving Complex Problems in Cryptography - Advances in Information Security, Privacy, and Ethics ◽

10.4018/978-1-5225-2915-6.ch005 ◽

2018 ◽

pp. 66-77

Author(s):

Kannan Balasubramanian

Keyword(s):

Hash Function ◽

Hash Functions ◽

Digital Signatures ◽

Message Authentication ◽

Authenticated Encryption ◽

Authentication Codes ◽

Message Authentication Codes ◽

Message Digest ◽

Cryptographic Hash Functions

Cryptographic Hash Functions are used to achieve a number of Security goals like Message Authentication, Message Integrity, and are also used to implement Digital Signatures (Non-repudiation), and Entity Authentication. This chapter discusses the construction of hash functions and the various attacks on the Hash functions. The Message Authentication Codes are similar to the Hash functions except that they require a key for producing the message digest or hash. Authenticated Encryption is a scheme that combines hashing and Encryption. The Various types of hash functions like one-way hash function, Collision Resistant hash function and Universal hash functions are also discussed in this chapter.

Download Full-text

Data Integrity

10.1093/oso/9780198788003.003.0006 ◽

2017 ◽

Author(s):

Keith M. Martin

Keyword(s):

Hash Function ◽

Hash Functions ◽

Data Integrity ◽

Message Authentication ◽

Authenticated Encryption ◽

Authentication Codes ◽

Basic Model ◽

Function Design ◽

Security Properties ◽

Different Levels

This chapter discusses cryptographic mechanisms for providing data integrity. We begin by identifying different levels of data integrity that can be provided. We then look in detail at hash functions, explaining the different security properties that they have, as well as presenting several different applications of a hash function. We then look at hash function design and illustrate this by discussing the hash function SHA-3. Next, we discuss message authentication codes (MACs), presenting a basic model and discussing basic properties. We compare two different MAC constructions, CBC-MAC and HMAC. Finally, we consider different ways of using MACs together with encryption. We focus on authenticated encryption modes, and illustrate these by describing Galois Counter mode.

Download Full-text

A Multiserver Biometric Authentication Scheme for TMIS using Elliptic Curve Cryptography

Journal of Medical Systems ◽

10.1007/s10916-016-0592-4 ◽

2016 ◽

Vol 40 (11) ◽

Cited By ~ 26

Author(s):

Shehzad Ashraf Chaudhry ◽

Muhammad Tawab Khan ◽

Muhammad Khurram Khan ◽

Taeshik Shon

Keyword(s):

Elliptic Curve ◽

Elliptic Curve Cryptography ◽

Authentication Scheme ◽

Biometric Authentication

Download Full-text

Data recovery for a neural network-based biometric authentication scheme

Математические вопросы криптографии ◽

10.4213/mvk284 ◽

2019 ◽

Vol 10 (2) ◽

pp. 61-74

Author(s):

D S Bogdanov ◽

Vladimir Olegovich Mironkin

Keyword(s):

Neural Network ◽

Authentication Scheme ◽

Data Recovery ◽

Biometric Authentication

Исследован проект стандарта защиты нейросетевых биометрических контейнеров, использующего криптографические алгоритмы. Показана несостоятельность рассмотренного совмещения парольной и нейросетевой биометрической систем защиты информации. Предложен алгоритм, позволяющий восстанавливать ключевую информацию, а также служебную информацию, определяющую процесс функционирования нейронной сети. Получен ряд численных характеристик алгоритма.

Download Full-text