Which standard covers the Keyed-Hash Message Authentication Code (HMAC)?

Enhance your preparation for the Federal IT Security Professional Test. Use quizzes, flashcards, and detailed explanations to ensure success. Stay ahead in the field of IT Security!

Multiple Choice

Which standard covers the Keyed-Hash Message Authentication Code (HMAC)?

Explanation:
HMAC is defined by a federal standard that specifies how a secret key and a hash function are combined to produce a message authentication code for verifying both data integrity and authenticity. That standard is FIPS 198-1. It lays out the exact construction and test vectors for using HMAC with hash functions such as SHA-1 and SHA-256. The other standards serve different purposes: FIPS 180-3 defines the hash functions themselves, FIPS 186-3 covers digital signatures, and FIPS 140-2 specifies security requirements for cryptographic modules. So the standard that covers HMAC is FIPS 198-1.

HMAC is defined by a federal standard that specifies how a secret key and a hash function are combined to produce a message authentication code for verifying both data integrity and authenticity. That standard is FIPS 198-1. It lays out the exact construction and test vectors for using HMAC with hash functions such as SHA-1 and SHA-256. The other standards serve different purposes: FIPS 180-3 defines the hash functions themselves, FIPS 186-3 covers digital signatures, and FIPS 140-2 specifies security requirements for cryptographic modules. So the standard that covers HMAC is FIPS 198-1.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy