Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Using symmetric key (AES -128) to sign and verify a message

Tags:

java

cryptography

digital-signature

I want to know can symmetric keys be used to sign a message ? We can encrpyt using the shared secret key. Also when symmetric key is used for signing , what API can be used in JAVA to load the key and sign the message ?

if i used Signature from java.security , it has an api initSign but that takes private key from the public/private key pair as the argument to sign the message. Here the key is symmetric key.

Any pointers ?

like image 865
user839917 Avatar asked Nov 28 '11 17:11

user839917

2 Answers

A shared secret key can be used to calculate a Message Authentication Code (MAC), which then can be used to confirm the integrity and authenticity of the message to another party which knows the same shared secret. Unlike digital signatures, which are created using the private key and verified using the public key, MACs do not offer non-repudiation (anyone who can verify the MAC can also generate a MAC for another message).

There are different forms of message authentication codes; probably the most often used variation is HMAC.

like image 167
Sergey Vlasov Avatar answered Sep 23 '22 19:09

Sergey Vlasov

Symmetric algorithms can't give the non-repudiation property that asymmetric signature schemes give, i.e. the receiver of a message can't prove that he didn't create the message themselves, as they have to know the scheme.

That said, a message authentication code (MAC) can give you what you want: Both sender and receiver have a shared key, the sender calculates a MAC with the secret and appends it to the message, and the receiver calculates the same MAC and compares it with the received message.

While the most often used MAC type (HMAC) is based on hash functions, there are also ones which are based on a block cipher like AES, like CBC-MAC (this is like CBC, but with zero initialization vector and using only the last block as output). (As said by noloader, CBC-MAC is not the most secure way of doing this, use other modes.)

You should use message authentication in most cases where you use encryption, as many encryption schemes are vulnerable to chosen-plaintext attacks.

In Java, a MAC can be calculated (and checked) by using the javax.crypto.Mac class.

like image 43
Paŭlo Ebermann Avatar answered Sep 25 '22 19:09

Paŭlo Ebermann
Sign in to Comment

Related questions

AlertDialog from within BroadcastReceiver?? Can it be done?
How to create an aspect on an Interface Method that extends from A "Super" Interface
Concurrency in Java: synchronized static methods
JSTL or JSP 2.0 EL for getter with argument
Java EventQueue. Why should everything be in invokelater method?
Quickest way to read text-file line by line in Java
Java secondary not public Class usage produces error "Type is not Visible" even if accessed methods are public in Main class
Using Paint.setStrokeJoin() and Paint.setStrokeMiter()
How to determine the length of a graphic string?
how to prevent SQL Injection in JSP?
How to get the time difference between 2 dates in millisec using JodaTime
Apache Commons NET: Should I create a new FTPClient object on each connection or reuse one?
Java - making objects with key/value pairs?
How to remove entire substring from '<' to '>' in Java
Unexpected end of ZLIB input stream
ejb Security questions regarding Roles and Authentication
Extract only file name From FileItem's name
How to escape the backslashes and the automatically generated escape character in file path in java
How to Insert a Linefeed with PDFBox drawString
An abstract class in Java need not implement any methods from its implementing interface. Why?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!