HMAC (English Wikipedia)

Analysis of information sources in references of the Wikipedia article "HMAC" in English language version.

refsWebsite

Global rank English rank

5rfc-editor.org

6,184^th place

4,465^th place

4doi.org

2^nd place

4ietf.org

214^th place

176^th place

3psu.edu

207^th place

136^th place

3nist.gov

355^th place

454^th place

3iacr.org

5,032^nd place

3,357^th place

2ucsd.edu

1,933^rd place

1,342^nd place

1keccak.team

low place

1schneier.com

8,888^th place

6,276^th place

1mathiasbynens.be

low place

1web.archive.org

1^st place

1pthree.org

low place

1worldcat.org

5^th place

doi.org (Global: 2^nd place; English: 2^nd place)

H. Krawczyk; M. Bellare; R. Canetti (February 1997). HMAC: Keyed-Hashing for Message Authentication. IETF Network Working Group. doi:10.17487/RFC2104. RFC 2104. Informational. Updated by RFC 6151.
H. Krawczyk; M. Bellare; R. Canetti (February 1997). HMAC: Keyed-Hashing for Message Authentication. IETF Network Working Group. doi:10.17487/RFC2104. RFC 2104. Informational. sec. 6. Updated by RFC 6151. The strongest attack known against HMAC is based on the frequency of collisions for the hash function H ("birthday attack") [PV,BCK2], and is totally impractical for minimally reasonable hash functions.
S. Turner; L. Chen (March 2011). Updated Security Considerations for the MD5 Message-Digest and the HMAC-MD5 Algorithms. Internet Engineering Task Force. doi:10.17487/RFC6151. RFC 6151. Informational. Updates RFC 2104 and 1321.
Eastlake, Donald; Hansen, Tony (May 2011). US Secure Hash Algorithms (SHA and SHA-based HMAC and HKDF). Internet Engineering Task Force. doi:10.17487/RFC6234. ISSN 2070-1721. RFC 6234. Informational. Obsoletes RFC 4634. Updates RFC 3174

iacr.org (Global: 5,032^nd place; English: 3,357^th place)

eprint.iacr.org

Bellare, Mihir. "New Proofs for NMAC and HMAC: Security without Collision-Resistance" (PDF). Journal of Cryptology. Retrieved 15 December 2021. This paper proves that HMAC is a PRF under the sole assumption that the compression function is a PRF. This recovers a proof based guarantee since no known attacks compromise the pseudorandomness of the compression function, and it also helps explain the resistance-to-attack that HMAC has shown even when implemented with hash functions whose (weak) collision resistance is compromised.
Kim, Jongsung; Biryukov, Alex; Preneel, Bart; Hong, Seokhie (2006). "On the Security of HMAC and NMAC Based on HAVAL, MD4, MD5, SHA-0 and SHA-1" (PDF). SCN 2006. Springer-Verlag.

iacr.org

Wang, Xiaoyun; Yu, Hongbo; Wang, Wei; Zhang, Haina; Zhan, Tao (2009), Cryptanalysis on HMAC/NMAC-MD5 and MD5-MAC (PDF), Lecture Notes in Computer Science, vol. 5479, Berlin, Heidelberg: Springer-Verlag, retrieved 15 June 2015

ietf.org (Global: 214^th place; English: 176^th place)

datatracker.ietf.org

H. Krawczyk; M. Bellare; R. Canetti (February 1997). HMAC: Keyed-Hashing for Message Authentication. IETF Network Working Group. doi:10.17487/RFC2104. RFC 2104. Informational. Updated by RFC 6151.
H. Krawczyk; M. Bellare; R. Canetti (February 1997). HMAC: Keyed-Hashing for Message Authentication. IETF Network Working Group. doi:10.17487/RFC2104. RFC 2104. Informational. sec. 6. Updated by RFC 6151. The strongest attack known against HMAC is based on the frequency of collisions for the hash function H ("birthday attack") [PV,BCK2], and is totally impractical for minimally reasonable hash functions.
S. Turner; L. Chen (March 2011). Updated Security Considerations for the MD5 Message-Digest and the HMAC-MD5 Algorithms. Internet Engineering Task Force. doi:10.17487/RFC6151. RFC 6151. Informational. Updates RFC 2104 and 1321.
Eastlake, Donald; Hansen, Tony (May 2011). US Secure Hash Algorithms (SHA and SHA-based HMAC and HKDF). Internet Engineering Task Force. doi:10.17487/RFC6234. ISSN 2070-1721. RFC 6234. Informational. Obsoletes RFC 4634. Updates RFC 3174

keccak.team (Global: low place; English: low place)

Keccak team. "Keccak Team – Design and security". Retrieved 31 October 2019. Unlike SHA-1 and SHA-2, Keccak does not have the length-extension weakness, hence does not need the HMAC nested construction. Instead, MAC computation can be performed by simply prepending the message with the key.

mathiasbynens.be (Global: low place; English: low place)

"PBKDF2+HMAC hash collisions explained · Mathias Bynens". mathiasbynens.be. Retrieved 7 August 2019.

nist.gov (Global: 355^th place; English: 454^th place)

csrc.nist.gov

"FIPS 198-1: The Keyed-Hash Message Authentication Code (HMAC)". Federal Information Processing Standards. 16 July 2008.
"FIPS 180-2 with Change Notice 1" (PDF). csrc.nist.gov.

nist.gov

Dworkin, Morris (4 August 2015). "SHA-3 Standard: Permutation-Based Hash and Extendable-Output Functions". Federal Information Processing Standards – via NIST Publications.

psu.edu (Global: 207^th place; English: 136^th place)

citeseerx.ist.psu.edu

Bellare, Mihir; Canetti, Ran; Krawczyk, Hugo (1996). "Keying Hash Functions for Message Authentication" (PDF). pp. 1–15. CiteSeerX 10.1.1.134.8430.
Preneel, Bart; van Oorschot, Paul C. (1995), MDx-MAC and Building Fast MACs from Hash Functions, Lecture Notes in Computer Science, vol. 963, Berlin-Heidelberg: Springer Verlag, CiteSeerX 10.1.1.34.3855
Preneel, Bart; van Oorschot, Paul C. (1995), On the Security of Two MAC Algorithms, CiteSeerX 10.1.1.42.8908

pthree.org (Global: low place; English: low place)

"Aaron Toponce : Breaking HMAC". Archived from the original on 7 August 2019. Retrieved 7 August 2019.

rfc-editor.org (Global: 6,184^th place; English: 4,465^th place)

H. Krawczyk; M. Bellare; R. Canetti (February 1997). HMAC: Keyed-Hashing for Message Authentication. IETF Network Working Group. doi:10.17487/RFC2104. RFC 2104. Informational. Updated by RFC 6151.
H. Krawczyk; M. Bellare; R. Canetti (February 1997). HMAC: Keyed-Hashing for Message Authentication. IETF Network Working Group. doi:10.17487/RFC2104. RFC 2104. Informational. sec. 6. Updated by RFC 6151. The strongest attack known against HMAC is based on the frequency of collisions for the hash function H ("birthday attack") [PV,BCK2], and is totally impractical for minimally reasonable hash functions.
S. Turner; L. Chen (March 2011). Updated Security Considerations for the MD5 Message-Digest and the HMAC-MD5 Algorithms. Internet Engineering Task Force. doi:10.17487/RFC6151. RFC 6151. Informational. Updates RFC 2104 and 1321.
"RFC 2104 Errata Held for Document Update · Erdem Memisyazici". www.rfc-editor.org. Retrieved 23 September 2016.
Eastlake, Donald; Hansen, Tony (May 2011). US Secure Hash Algorithms (SHA and SHA-based HMAC and HKDF). Internet Engineering Task Force. doi:10.17487/RFC6234. ISSN 2070-1721. RFC 6234. Informational. Obsoletes RFC 4634. Updates RFC 3174

schneier.com (Global: 8,888^th place; English: 6,276^th place)

Schneier, Bruce (August 2005). "SHA-1 Broken". Retrieved 9 January 2009. although it doesn't affect applications such as HMAC where collisions aren't important

ucsd.edu (Global: 1,933^rd place; English: 1,342^nd place)

cseweb.ucsd.edu

Bellare, Mihir; Canetti, Ran; Krawczyk, Hugo (1996). "Keying Hash Functions for Message Authentication" (PDF). pp. 1–15. CiteSeerX 10.1.1.134.8430.
Bellare, Mihir; Canetti, Ran; Krawczyk, Hugo (Spring 1996). "Message Authentication using Hash Functions—The HMAC Construction" (PDF). CryptoBytes. 2 (1).

web.archive.org (Global: 1^st place; English: 1^st place)

"Aaron Toponce : Breaking HMAC". Archived from the original on 7 August 2019. Retrieved 7 August 2019.

worldcat.org (Global: 5^th place; English: 5^th place)

search.worldcat.org

Eastlake, Donald; Hansen, Tony (May 2011). US Secure Hash Algorithms (SHA and SHA-based HMAC and HKDF). Internet Engineering Task Force. doi:10.17487/RFC6234. ISSN 2070-1721. RFC 6234. Informational. Obsoletes RFC 4634. Updates RFC 3174

HMAC (English Wikipedia)

doi.org (Global: 2nd place; English: 2nd place)

iacr.org (Global: 5,032nd place; English: 3,357th place)

eprint.iacr.org

iacr.org

ietf.org (Global: 214th place; English: 176th place)

datatracker.ietf.org

keccak.team (Global: low place; English: low place)

mathiasbynens.be (Global: low place; English: low place)

nist.gov (Global: 355th place; English: 454th place)

csrc.nist.gov

nist.gov

psu.edu (Global: 207th place; English: 136th place)

citeseerx.ist.psu.edu

pthree.org (Global: low place; English: low place)

rfc-editor.org (Global: 6,184th place; English: 4,465th place)

schneier.com (Global: 8,888th place; English: 6,276th place)

ucsd.edu (Global: 1,933rd place; English: 1,342nd place)

cseweb.ucsd.edu

web.archive.org (Global: 1st place; English: 1st place)

worldcat.org (Global: 5th place; English: 5th place)

search.worldcat.org

doi.org (Global: 2^nd place; English: 2^nd place)

iacr.org (Global: 5,032^nd place; English: 3,357^th place)

ietf.org (Global: 214^th place; English: 176^th place)

nist.gov (Global: 355^th place; English: 454^th place)

psu.edu (Global: 207^th place; English: 136^th place)

rfc-editor.org (Global: 6,184^th place; English: 4,465^th place)

schneier.com (Global: 8,888^th place; English: 6,276^th place)

ucsd.edu (Global: 1,933^rd place; English: 1,342^nd place)

web.archive.org (Global: 1^st place; English: 1^st place)

worldcat.org (Global: 5^th place; English: 5^th place)