International Journal of Electrical and Computer Engineering (IJECE) Vol.
No.
February 2019, pp.
ISSN: 2088-8708.
DOI: 10.
11591/ijece.
Implementation of message authentication code using DNA-LCG key and a novel hash algorithm Gurpreet Kour Sodhi1.
Gurjot Singh Gaba2.
Lavish Kansal3.
Mohamed El Bakkali4.
Faisel Em Tubbal5 1,2,3School of Electronics and Electrical Engineering.
Lovely Professional University.
India 4Signals.
Systems & Components Lab.
Fac.
of Sciences & Tech.
Sidi Mohamed Ben Abdellah University.
Morocco 5School of Electrical.
Computer and Telecommunications Engineering.
University of Wollongong.
Australia 5School of Computing.
Engineering and Mathematics.
Western Sydney University.
Australia 5Technological Projects Department, the Libyan Centre for Remote Sensing and Space Science.
Libya
Article Info
ABSTRACT
Article history:
With the introduction of electronic form of data, the need for an automatic system of security to protect the integrity of data while being transferred from one place to another is required.
This is especially the case for a network in which the systems are accessed over a public network or internet.
Security mechanisms involve the use of more than one algorithm.
They further require that the participants should possess a secret key, which raises issues about creation, distribution and proper usage of these keys.
The most effective technique used in provisioning security is Message Authentication Code (MAC) which helps in preserving integrity.
MAC involves the use of secret key along with a hash algorithm.
In this paper, we present an implementation of MAC using a secret key created by Deoxyribonucleic Acid (DNA) and random output sequence of Linear Congruential Generator (LCG).
The hash algorithm used is made more robust by adding complexity to the traditional SHA-160.
The presented scheme RMAC (Robust Message Authentication Cod.
is tested on National Institute of Science and Technology (NIST) test suite for random numbers, avalanche criteria and resistance towards network attacks.
The results reveal that the scheme is efficient and is applicable for a variety of security demanding environments.
Received Feb 18, 2018 Revised Aug 20, 2018 Accepted Aug 30, 2018 Keywords:
Data integrity Hash Linear congruential generator Message authentication code message digest, security Copyright A 2019 Institute of Advanced Engineering and Science.
All rights reserved.
Corresponding Author:
Lavish Kansal.
Department of Electronics and Electrical Engineering.
Lovely Professional University.
Jalandar.
Punjab.
India.
Email: lavish.
15911@lpu.
INTRODUCTION
Security aspects come into picture when there is a need to protect the information from an adversary who may be a threat to data authentication, confidentiality or integrity .
Various techniques like digital signatures are used for authentication purpose.
encryption provides data confidentiality and data integrity is preserved using MAC .
MAC falls into two categories.
those involving the use of secure hash algorithm known as HMAC .
and those based on symmetric block cipher (CMAC).
Typically most of the Hash algorithms use a compression function, which is a combination of binary and logical operations .
The composition of a MAC algorithm explain in .
It takes a message and a secret key as input and produces an authentication code as output.
ycAyaya = ya.
a, ycA) where.
M: Input Message Journal homepage: http://iaescore.
com/journals/index.
php/IJECE .
Int J Elec & Comp Eng
ISSN: 2088-8708
C: MAC Function K: Shared Secret Key MAC: Message Authentication Code The integrity of the received message is verified at the receiver end, as the recipient posses the secret key which can be used to generate the authentication code again and thus, comparing it with the one received.
A popular form of MAC .
uses a cryptographic hash function.
the secret key can either be given as an input along with the hash or it can be embedded in an existing hash algorithm.
Various researches have been reported with enormous protocols of data security in the last few decades .
An implementation of Advanced Encryption Standard (AES) algorithm on a microcontroller for securing data in a small scale network has been presented in the past .
Sofia .
presents a biometric based MAC algorithm called WBAN, which can be applied to assure data authenticity and integrity in a wireless body network.
Dilli and Chandra .
presented another scheme which uses HMAC SHA 256 Algorithm for message authentication and data integrity.
Hans.
Christian and Ulrich implemented a heterogeneous flexible computing platform for the network nodes, i.
the Universal MAC (UMAC) using Universal Hashing .
Verma and Prajapati .
present a novel SHA that possess less execution time and better bit difference value, this can be impleted in order to increase the security.
Security is a broader term which involves three requirements.
Authenticity.
Confidentiality and Integrity.
Authenticity ensures that the received message is authorized and has been received from the intended party, confidentiality is prevention of data from unauthorized access, and integrity is detecting if the data contents have been altered by an unauthorized party .
Usually data integrity provides methods include the use of a shared key and a hash algorithm forming a MAC.
In this scenario, the data sent by the source has a tag appended with it which is the result of a MAC function and is known as a Message Digest (MD).
At the receiver end, the hash is again computed and then compared with the received value.
If the received and the computed one are same then the message received is concluded to be unaltered else there has been a This is formulated on the basis of the principle concept of MAC, which says that the MAC value is a unique representation of a data value and it cannot be same for two different values.
MAC
constructed from block cipher like DES, are called MAC schemes and those which are formed using cryptographic hash function like SHA are called as HMAC schemes .
Considering the significance of data integrity, a new MAC scheme RMAC is proposed which involves biological features of the user and LCG sequence as the key, along with a novel hash algorithm.
The algorithm integrates a crypto-hash function along with a biometric key generation technique which involves the use of the DNA characteristics and LCG sequence .
PROPOSED ALGORITHM
Data integrity is preserved using MAC which is a function of a secret key and a hash algorithm.
RMAC uses a novel hash algorithm which follows the basic structure of SHA-160 and has an AofAo function integrated into it along with a secret key that has been produced using a DNA sequence and LCG output random sequence.
The details are explained in the following subsections:
Novel hash algorithm The novel hash algorithm used in this scheme is an outcome of the AofAo function embedded in the basic structure of SHA-160 that consists of 80 rounds and for every 20 rounds, a constant AoKAo is used as an So, there are total four AoKAo values, each of which is an eight digit hexadecimal value.
The MD produced is of 160-bits.
The AofAo function used in the algorithm constitutes of three operations.
Expansion (EXP).
S-Box substitution (S) and modulo 248 addition ( ) applied on the five register values (A.
E) .
The structure of the proposed hash algorithm is explained using Figure 1.
DNA-LCG based secret key:
The proposed hash algorithm is applied on the message input along with the secret key.
The secret key used in the presented technique is deduced using the characteristics of DNA.
The DNA is represented in the form of a sequence constituting of AoagctAo characters adhering to a unique paradigm for every individual.
The characteristic uniqueness of a DNA sequence makes it impossible to be replicated or stolen.
To enhance the efficacy of the secret key, a random number generator LCG is used which produces a random output sequence of 256-bits.
this output sequence is a result of the secret seed value given as an input to the random number generator.
The DNA sequence is converted into its binary form and exclusive-or operation is applied between DNA and LCG sequence.
The result is a 256-bit key, which is used in the formation of RMAC .
Implementation of message authentication code using DNA-LCG key andA (Gurpreet Kour Sodh.
A ISSN: 2088-8708 Formation of RMAC MAC is also known as keyed Hash i.
a hash algorithm which requires a secret key to operate.
The generated DNA-LCG key is of 256-bits and in order to use it in RMAC, it needs to be converted into four 32bit keys.
This conversion is done using few operations on the 256-bit key, which are explained using Table 1.
Figure 2 explains the operations applied on DNA-LCG key in order to obtain four keys, which are to be used in MAC Figure 1.
A novel hash algorithm .
Figure 2.
Operations applied on DNA-LCG key Table 1.
Pseudo Code for Operations Y= initial key of 256-bits for i=0:7 //splitting the key into 8 parts of 32-bit each x.
1,:)= Y.
*i 1:32*.
) for j=1:4 //Applying exclusive-or operation between each consecutive pair forming four 32-bit sequences and then complementing the results.
= xor .
*j-1,:), x.
*j,:)) //k represent the key// //The four key values are converted into hexadecimal form before being used in MAC// The four final keys in hexadecimal form are shown in Table 2.
These four keys are replaced with the four 32-bit constant values used in elderly SHA-160 .
This frames a RMAC algorithm.
The MAC values obtained, using the proposed technique are presented in Table 3.
The obtained MAC values are converted into binary form and evaluated on randomness and avalanche criteria.
Int J Elec & Comp Eng.
Vol.
No.
February 2019 : 352 - 358
Int J Elec & Comp Eng
ISSN: 2088-8708
Table 2.
Security Key Key no.
32-bit Keys (Hexadecima.
F270633E
BDB5DC13
591C502C
3A404009
Table 3.
MAC Values Input Sodhi Input (Hex.
MAC Values (Hexadecima.
RESULTS AND DISCUSSIONS The performance of RMAC is analyzed on the basis of NIST tests of randomness and avalanche This is done for three inputs values having varying lengths.
These tests compute the P-value for a binary sequence.
which must be greater than 0.
01 for a sequence to be declared as random sequence .
The simulations have been carrierd out on MATLAB.
The computed values for RMAC under various tests signifies the efficiency of the proposed technique and signifies its applicability in practical sensrios.
In order to certify the efficiency of our presented scheme, the NIST results of RMAC are compared with those of the traditional ones.
The eight digit hexadecimal key used for these algorithms is Ao3A54E26BAo, which is kept constant throughout for all the traditional techniques.
A brief overview of the various NIST tests is given as:
Frequency Test This test computes the ratio of the number of ones and zeros in a sequence.
It observes the closeness between the number of ones and zeros.
A sequence is random if the proportion of both is close to each other .
The results in Table 4 illustrate that the proposed algorithm produces better proximity between the count of ones and zeros as compared to most of the other schemes.
Table 4.
NIST Test Results for Frequency Test
Hash Technique MD2
MD5
SHA-160
SHA-256
SHA-384
SHA-512
RMAC
P-values Sodhi unitedstates Binary Derivative Test The Binary Derivative Test proceeds by applying exclusive-or operation between consecutive bits of a sequence until only one bit is left.
Then, the ratio of number of ones to the total length of the sequence in each case is computed.
Lastly, the average of the ratio for all the sequences is calculated, if this value lies near to 0.
5, the sequence is said to be random .
The results in Table 5 depict that the output of the proposed scheme is random.
Table 5.
NIST Test Results for Binary Derivative Test
Hash Technique MD2
MD5
SHA-160
SHA-256
SHA-384
SHA-512
RMAC
P-values Sodhi unitedstates Discrete Fourier Transform Test (DFT) The DFT test finds the peak heights in the DFT of a sequence.
It determines the presence of identical patterns in the sequence which indicates a deviation from the assumed randomness.
The aim is to Implementation of message authentication code using DNA-LCG key andA (Gurpreet Kour Sodh.
A ISSN: 2088-8708 check if more than 5% of the peaks exceed the 95% threshold.
The results for DFT test are summarized in Table 6.
Table 6.
NIST test results for DFT test
Hash Technique MD2
MD5
SHA-160
SHA-256
SHA-384
SHA-512
RMAC
P-values Sodhi unitedstates Approximate Entropy Test The motivation of this test is to calculate the frequency of all the overlapping bit patterns existing in the sequence.
It compares the frequency of overlapping blocks of two sequential lengths with the expected outcome for a random sequence.
The results are given in Table 7.
Table 7.
NIST test results for Approximate Entropy test
Hash Technique MD2
MD5
SHA-160
SHA-256
SHA-384
SHA-512
RMAC
P-values Sodhi unitedstates MaurerAos AuUniversal StatisticalAy Test This test focuses on finding out if a sequence can be compressed without any loss of information.
sequence is said to be random if it is not compressible .
The results are summarized in Table 8.
Table 8.
NIST Test Results for MaurerAos Test
Hash Technique MD2
MD5
SHA-160
SHA-256
SHA-384
SHA-512
RMAC
P-values Sodhi unitedstates As observed from Table 4 to Table 8 RMAC performs better by passing the NIST criteria of generating a random MAC.
Thus, indicating its efficiency as a MAC technique.
The purpose of MAC is to preserve data integrity and to significantly detect any change in the message .
Also, a particular MAC is unique for particular data content and thus it can indicate any change in the data.
Thus, a change can be observed in a particular MAC value if the data file is altered .
To study this parameter, another test has been applied to the RMAC values, this is the Avalanche Test.
This test calculates the avalanche effect i.
change in the output with respect to a change in the input, which is calculated using the formula given in .
The input consists of 128-bits.
Avalanche Effect = ycAyea.
yeayeN yeEyeOyeiyei yeNyesyeOyecyecyeIyeI ycyeayeiyeCyes yeayea.
yeayeN yeEyeOyeiyei yeOyea yeiyeOyeI yeiyeIyeeyenyeIyeayeEyeI The more the avalanche effect, better is the efficiency of the algorithm.
This test has been applied by altering a single character of the input value.
The Avalanche Test results are summarized in Table 9.
Int J Elec & Comp Eng.
Vol.
No.
February 2019 : 352 - 358
Int J Elec & Comp Eng
ISSN: 2088-8708
Table 9.
Avalanche Test Original Input Sodhi Altered Input No.
of bits Flipped Sodhb Unitedstraten Avalanche effect It is observed that RMAC performs well under this criteria too, thus demonstrating its efficiency.
The increased complexity of RMAC makes it highly resistive towards various network attacks on data integrity, a brief summary analysing the behaviour of the technique is presented in Table 10 .
The RMAC algorithm is complex and therefore is highly resistive towards various attacks on integrity, thus increasing its applicability in a data sensitive environment.
Table 10.
Resistance against Attacks Network Attacks on Integrity Salami attacks Data diddling Attacks Man-in-the-middle attacks Seed Attacks Preventive Features As observed from the avalanche test analysis, a small change in the input results in a major change in the output.
Hence, even the minute modification in the data would be detected.
Since the proposed scheme uses biological characteristics to frame the secret key, therefore it is not possible for the data to be modified by an unauthorized party.
The proposed technique is hash based, thus it is highly resistive towards any unauthorized alterations in the transmitted data.
Keys generated using only the random number generator outputs are susceptible towards seed attacks.
the key used in the proposed MAC is a result of fusion of DNA and random number generator output, thus increasing its resistance towards seed attacks.
CONCLUSION
This paper presents an efficient MAC technique which is a result of a novel hash algorithm and a secret key generated using DNA and LCG.
MAC also known as cryptographic checksum is an authentication technique which uses a hash technique along with a secret key to preserve data integrity and validate the The RMAC involves the use biometric characteristics along with a novel hash algorithm to frame the MAC, thus increasing its efficiency.
The analysis of the results concludes that the proposed algorithm has higher complexity than most of the other schemes and thus performs better than most of the existing HMAC schemes such as MD2.
MD5.
SHA-160.
SHA-256.
SHA-384 and SHA-512.
This scheme uses a secret key which involves DNA characteristics of the user, thus making it considerably more reliable and resistive towards attacks.
The proposed RMAC scheme can be effectively used in various cryptographic techniques for data integrity and better security.
REFERENCES