The AES-CMAC Algorithm

This RFC 4493 was published in 2006.

Abstract

The National Institute of Standards and Technology (NIST) has recently specified the Cipher-based Message Authentication Code (CMAC), which is equivalent to the One-Key CBC MAC1 (OMAC1) submitted by Iwata and Kurosawa.
This memo specifies an authentication algorithm based on CMAC with the 128-bit Advanced Encryption Standard (AES).
This new authentication algorithm is named AES-CMAC.
The purpose of this document is to make the AES-CMAC algorithm conveniently available to the Internet Community.

RFC 4493 introduction

The National Institute of Standards and Technology (NIST) has recently specified the Cipher-based Message Authentication Code (CMAC).
CMAC [NIST-CMAC] is a keyed hash function that is based on a symmetric key block cipher, such as the Advanced Encryption Standard [NIST-AES].
CMAC is equivalent to the One-Key CBC MAC1 (OMAC1) submitted by Iwata and Kurosawa [OMAC1a, OMAC1b].
OMAC1 is an improvement of the eXtended Cipher Block Chaining mode (XCBC) submitted by Black and Rogaway [XCBCa, XCBCb], which itself is an improvement of the basic Cipher Block Chaining-Message Authentication Code (CBC-MAC).
XCBC efficiently addresses the security deficiencies of CBC-MAC, and OMAC1 efficiently reduces the key size of XCBC.

Download links

Click here to download RFC 4493: TXT format PDF format (coming soon)

Related Request for Comments

Popular RFCs

©2015 RFC-Base.org - all rights reserved.