Secure XML: The New Syntax for Signatures and Encryption

2.2. Message Authentication Codes

A message authentication code (MAC) function computes a MAC from a message and a secret key. If the originator and the receiver share knowledge of that secret key, the receiver can calculate the same function of the message and secret key and see if it matches the MAC accompanying the message. See Figure 2-2. If the MAC matches, then you know, within the strength of the MAC function and key, that some program with possession of the secret produced the MAC. Of course, every program that can verify the MAC needs to know this secret. Thus all of them can create valid MACs even if they should only receive and verify these codes.

Figure 2-2. Message authentication codes

A simple MAC function might append the secret ...

Get Secure XML: The New Syntax for Signatures and Encryption now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Secure XML: The New Syntax for Signatures and Encryption by Donald E. Eastlake, Kitty Niles

2.2. Message Authentication Codes

Figure 2-2. Message authentication codes

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly