122 lines
3.1 KiB
Perl
122 lines
3.1 KiB
Perl
package Digest::CMAC;
|
|
|
|
use base qw(Digest::OMAC::Base);
|
|
|
|
use strict;
|
|
#use warnings;
|
|
use Carp;
|
|
use MIME::Base64;
|
|
|
|
use vars qw($VERSION);
|
|
|
|
$VERSION = '0.04';
|
|
|
|
sub _lu2 {
|
|
my ( $self, $blocksize, $L, $Lu ) = @_;
|
|
$self->_lu( $blocksize, $Lu );
|
|
}
|
|
|
|
1;
|
|
__END__
|
|
|
|
=head1 NAME
|
|
|
|
Digest::CMAC - The One-key CBC MAC message authentication code.
|
|
|
|
=head1 SYNOPSIS
|
|
|
|
use Digest::CMAC;
|
|
my $omac1 = Digest::CMAC->new($key);
|
|
|
|
$omac1->add($data);
|
|
|
|
my $binary_tag = $omac1->digest;
|
|
my $hex_tag = $omac1->hexdigest;
|
|
my $base64_tag = $omac1->b64digest;
|
|
|
|
=head1 DESCRIPTION
|
|
|
|
This module implements OMAC1 blockcipher-based message authentication code for perl. For OMAC1/OMAC. Check http://www.nuee.nagoya-u.ac.jp/labs/tiwata/omac/omac.html. Here is an excerpt of that page
|
|
|
|
=over 4
|
|
|
|
OMAC is a blockcipher-based message authentication code designed and analyzed by me and Kaoru Kurosawa.
|
|
|
|
OMAC is a simple variant of the CBC MAC (Cipher Block Chaining Message Authentication Code). OMAC stands for One-Key CBC MAC.
|
|
|
|
OMAC allows and is secure for messages of any bit length (while the CBC MAC is only secure on messages of one fixed length, and the length must be a multiple of the block length). Also, the efficiency of OMAC is highly optimized. It is almost as efficient as the CBC MAC.
|
|
|
|
"NIST Special Publication 800-38B Recommendation for Block Cipher Modes of Operation: the CMAC Mode for Authentication" has been finalized on May 18, 2005. This Recommendation specifies CMAC, which is equivalent to OMAC (OMAC1).
|
|
|
|
=back 4
|
|
|
|
Like many block-cipher's Crypt:: modules like L<Crypt::Rijndael>, and L<MIME::Base64>.
|
|
|
|
=head1 METHODS
|
|
|
|
=over 4
|
|
|
|
=item new
|
|
|
|
my $omac1 = Digest::CMAC->new($key [, $cipher]);
|
|
|
|
This creates a new Digest::CMAC object, using $key.
|
|
|
|
$cipher is 'Crypt::Rijndael'(default), 'Crypt::Misty1', Crypt::Blowfish', or whatever blockcipher you like. $key is fixed length string that blockcipher demands.
|
|
|
|
=item add
|
|
|
|
$omac1->add($message,...);
|
|
|
|
The $message provided as argument are appended to the message we calculate the MAC. The return value is the $cmac object itself;
|
|
|
|
=item reset
|
|
|
|
$omac1->reset;
|
|
|
|
This is just an alias for $cmac->new;
|
|
|
|
=item digest
|
|
|
|
my $digest = $omac1->digest;
|
|
|
|
Return the binary authentication code for the message. The returned string will be blockcipher's block size.
|
|
|
|
=item hexdigest
|
|
|
|
my $digest = $omac1->hexdigest;
|
|
|
|
Same as $cmac->digest, but will return the digest in hexadecimal form.
|
|
|
|
=item b64digest
|
|
|
|
Same as $omac1->digest, but will return the digest as a base64 encoded string.
|
|
|
|
=back
|
|
|
|
=head1 SEE ALSO
|
|
|
|
L<Crypt::Rijndael>,
|
|
http://www.nuee.nagoya-u.ac.jp/labs/tiwata/omac/omac.html,
|
|
http://www.csrc.nist.gov/publications/nistpubs/800-38B/SP_800-38B.pdf
|
|
|
|
=head1 AUTHOR
|
|
|
|
OMAC designed and analyzed by
|
|
Tetsu Iwata and Kaoru Kurosawa
|
|
|
|
"Crypt::CMAC" was written by
|
|
Hiroyuki OYAMA <oyama@module.jp>
|
|
|
|
OMAC2 support added by Yuval Kogman
|
|
|
|
=head1 COPYRIGHT AND LICENSE
|
|
|
|
Copyright (C) 2006 by Hiroyuki OYAMA, 2007 by Hiroyuki OYAMA, Yuval Kogman
|
|
|
|
This library is free software; you can redistribute it and/or modify
|
|
it under the same terms as Perl itself, either Perl version 5.8.6 or,
|
|
at your option, any later version of Perl 5 you may have available.
|
|
|
|
=cut
|