I can think of where people use hashes and signatures. But where are MAC used in real life?
Are there any protocol in cryptography that uses MAC? Or examples where MACs are relevant?
Asked
Active
Viewed 201 times
1 Answers
9
MACs are used all the time. Any time you want authenticated encryption, that is you want to send messages that can't be tampered by an attacker who lacks your secret key, you need to apply a MAC to every message you send as well as check a MAC for every message you receive.
Examples that I use on a daily basis include:
- TLS (formerly known as SSL) used in HTTPS, FTPS, etc to provide Transport Layer Security providing authenticated encryption (AE) at the transport layer (TCP),
- IPSec common in VPNs that provides AE at the internet (IP) layer. For info on the MAC usage, search the Cryptographic Suites for IPSec RFC for integrity and you'll find HMAC-SHA1-96/AES-XCBC-MAC-96, which are types of MACs,
- SSH used to remotely connect to linux/unix machines which provides AE between client and host,
- WPA2 used to provide AE between your wireless router and your wifi device. Note in the networking literature it's called a Message Integrity Code (MIC) to limit confusion as MAC typically refers to the MAC address (Media Access Control) - the link layer address.
user_data + MAC(user_data)(user data being, user ID, login time, expiry time) and then you can check the user by seeing that their session cookie has a MAC that validates their user info. (Granted an alternative way is to just generate a random UUID for each session and store that random UUID in the DB and check it every time). – dr jimbob Apr 28 '14 at 16:45