concept

Message Authentication Code (MAC)

A Message Authentication Code (MAC) is a cryptographic technique that provides data integrity and authenticity by generating a short tag from a message and a secret key, ensuring the message has not been altered and originates from a verified sender. It is commonly used in secure communication protocols, such as TLS/SSL, and in data storage to prevent tampering. MACs are distinct from digital signatures as they rely on symmetric keys shared between parties.

Also known as: MAC, Message Authentication Code, HMAC, CMAC, GMAC
🧊Why learn Message Authentication Code (MAC)?

Developers should learn and use MACs when building systems that require secure data transmission or storage, such as in web APIs, financial transactions, or IoT devices, to prevent unauthorized modifications and spoofing attacks. It is essential in scenarios where both integrity and authenticity are critical, like in authentication tokens or file verification, and is often combined with encryption for confidentiality in authenticated encryption schemes like AES-GCM.

Compare Message Authentication Code (MAC)

Message Authentication Code (MAC) vs Digital SignaturesMessage Authentication Code (MAC) vs Hash FunctionsMessage Authentication Code (MAC) vs Checksums

Learning Resources

📄
NIST Special Publication 800-38B: Recommendation for Block Cipher Modes of Operation: The CMAC Mode for Authentication
docs
📝
Khan Academy: Cryptography - Message Authentication Codes
tutorial
🎓
Coursera: Cryptography I by Stanford University
course
🎬
YouTube: Message Authentication Codes Explained
video
📚
Book: 'Cryptography Engineering' by Niels Ferguson, Bruce Schneier, and Tadayoshi Kohno
book

Related Tools

Symmetric EncryptionCryptographyTls SslData IntegrityAuthenticated Encryption

Alternatives to Message Authentication Code (MAC)

Digital SignaturesHash FunctionsChecksums