Hashed Message Authentication Codes (HMAC)

Sep 25,2009 by alperen

Hashed Message Authentication Codes (HMAC)

IPSec supports improved versions of Message Digest 5 (MD5) and Secure Hash Algorithm 1 (SHA-1) hash functions for cryptographically secure authentication. As with everything else in the security arena, hashing algorithms have evolved into HMACs, which build on the proven security of hashing algorithms by implementing additional cryptographic processes.

The HMAC algorithm involves having the original message text encrypted (hashed) using the sender’s private key, resulting in a keyed, fixed-length checksum as output. The checksum value is appended to the message as a signature. The destination peer runs the same HMAC on the received message data, using the same private key. The resultant hash is compared with the received hash value, which should match exactly. Figure 9-16 shows this combination of source message and encryption key.

Figure 9-16: HMAC hash process showing the private encryption key

Related news

» Hashing
by alperen posted on Sep 25,2009
» Cryptography Types
by alperen posted on Sep 25,2009
» Verifying MD5 Authentication
by alperen posted on Sep 02,2009
» Authentication Header (AH)
by alperen posted on Sep 24,2009
» Step 4-1 Display the Configured IKE Policies
by alperen posted on Sep 27,2009

Did you enjoy this article?

(total 0 votes)

Comments (0 posted)

More Top News

CCSP-Cisco Certified Security Professional