System and method for selectively authenticating data
First Claim
Patent Images
1. A method for generating an authentication tag for a message, comprising:
- processing a portion of the message using a first function to produce an interim output; and
processing the interim output using a second function to produce the authentication tag;
wherein the message includes a number of message parts, and wherein the portion of the message processed is selected by using a pseudorandom probabilistic function to determine whether each message part is provided as input to said first function.
10 Assignments
0 Petitions
Accused Products
Abstract
A high-speed, low-strength authentication mechanism is disclosed. This mechanism is based on a partial message authentication code, wherein a message authentication code is applied only to some portion of the message. By applying an authentication algorithm only to selected parts of the message, significant time can be saved while maintaining acceptable security.
83 Citations
20 Claims
-
1. A method for generating an authentication tag for a message, comprising:
-
processing a portion of the message using a first function to produce an interim output; and
processing the interim output using a second function to produce the authentication tag;
wherein the message includes a number of message parts, and wherein the portion of the message processed is selected by using a pseudorandom probabilistic function to determine whether each message part is provided as input to said first function. - View Dependent Claims (2, 7, 8, 9, 10, 11, 12, 13)
-
-
3. A method for generating an authentication tag for a message, comprising:
-
processing a portion of the message using a first function to produce an interim output; and
processing the interim output using a second function to produce the authentication tag;
wherein the message includes a number of message parts, and wherein the portion of the message processed is selected by;
defining a message selection percentage p; and
using a pseudorandom probabilistic function, uniform over an interval [1, 2L], where L=1/p and p is a message selection percentage, to determine offsets between message parts which are provided as input to said first function. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
-
4. A device for generating an authentication tag for a message, comprising:
-
a first hashing module that processes a portion of the message to produce an interim output; and
a second hashing module that processes said interim output to produce the authentication tag;
wherein the message includes a number of message parts, and wherein the portion of the message processed is selected by using a pseudorandom probabilistic function to determine whether each message part is provided as input to said first hashing module. - View Dependent Claims (5)
-
-
6. A device for generating an authentication tag for a message, comprising:
-
a first hashing module that processes a portion of the message to produce an interim output; and
a second hashing module that processes said interim output to produce the authentication tag;
wherein the message includes a number of message parts, and wherein the portion of the message processed is selected by;
defining a message selection percentage p; and
using a pseudorandom probabilistic function, uniform over an interval [1, 2L], where L=1/p and p is a message selection percentage, to determine offsets between message parts which are provided as input to said first hashing module.
-
Specification