1. What are the contributions mentioned in the paper "Efficient mutual data authentication using manually authenticated strings: extended version" ?
As a solution, the authors propose an asymptotically optimal protocol family for data authentication that uses short manually authenticated out-of-band messages.. Compared to previous articles by Vaudenay and Pasini the results of this paper are more general and based on weaker security assumptions.. In addition to providing security proofs for their protocols, the authors focus also on implementation details and propose practically secure and efficient sub-primitives for applications.
read more
2. What is the simplest way to verify that h is u-almost universal?
If the authors compress kb in some manner, i.e., compute h(ma||mb, ka, kb) = h0(ma||mb, ka)⊕h1(mb, kb) then theresulting hash function is only εu-almost universal.
read more
3. what is the simplest way to prove that a protocol family is asymptotic?
If the authors assume asymptotic optimality from the protocol family, then the authors can show that for large enough k, oob(m, rr , rs) is almost uniform w.r.t to rr and rs, and with high probability only a single value oob(m, rr, rs) leads to acceptance.
read more
4. How many bits can be used to protect authenticity?
The authors explicitly assume that ≤ 30, since for sufficiently large (say 160 bits) one can use collision resistant hash functions to protect authenticity, e.g., send oob = h(m).
read more
