Why length of only 32-bits in 128-EIA3 MAC?
Page 1 of 1
Why length of only 32-bits in 128-EIA3 MAC?
Typically by today's standards, MACs are of greater length than 32-bits. Having only
32 bits allows birthday-paradox comments like this
(Although the comment there relies on prohibited assumption of the use of one IV twice)
So, why only 32-bit MAC?
koko- Guest
RE: Why length of only 32-bits in 128-EIA3 MAC?
The MAC size is part of the overall LTE standard, and not specific to the ZUC-based algorithm. It's the same for all of 128-EIA1, 128-EIA2 and 128-EIA3.koko wrote:
Typically by today's standards, MACs are of greater length than 32-bits. Having only
32 bits allows birthday-paradox comments like this
(Although the comment there relies on prohibited assumption of the use of one IV twice)
So, why only 32-bit MAC?
Larger MACs mean that messages occupy more bandwidth and take longer to send - i.e. they come at a cost. In the LTE context, where the secret key used for integrity protection does not have a very long lifetime, a 32-bit MAC seems sufficient to give good protection against realistic threats.
Steve Babbage- Posts : 30
Join date : 2010-08-02
Similar topics
» Test Set Mismatch for EIA3
» 128-EIA3 is not a collision resistant Integrity Algorithm
» please give me EIA3&EEA3 test data document,thanks
» Difference between Version 1.4 and Version 1.5 of 128-EEA3 and 128-EIA3
» Difference between Version 1.4 and Version 1.5 of 128-EEA3 and 128-EIA3
» 128-EIA3 is not a collision resistant Integrity Algorithm
» please give me EIA3&EEA3 test data document,thanks
» Difference between Version 1.4 and Version 1.5 of 128-EEA3 and 128-EIA3
» Difference between Version 1.4 and Version 1.5 of 128-EEA3 and 128-EIA3
Page 1 of 1
Permissions in this forum:
You cannot reply to topics in this forum