What is a 'Message Authentication Code - MAC'

A message authentication code (MAC), or tag, is a security code that is typed in by the user of a computer to access accounts or portals. This code is attached to the message or request sent by the user. Message authentication codes (MACs) attached to the message must be recognized by the receiving system in order to grant the user access.

BREAKING DOWN 'Message Authentication Code - MAC'

Message authentication codes (MACs) are commonly used in electronic funds transfers (EFTs) to maintain information integrity. They confirm that a message is authentic; that it really does come, in other words, from the stated sender, and hasn’t undergone any changes en route. A verifier who also possesses the key can use it to identify changes to the content of the message in question.

Message authentication codes are usually required to access any kind of financial account. Banks, brokerage firms, trust companies and any other deposit, investment or insurance company that offers online access can employ these codes. They are a vital component of financial cryptography.

Algorithms Used to Generate MACs

Three algorithms typically comprise a MAC: a key generation algorithm, a signing algorithm and a verifying algorithm. The key generation algorithm chooses a key at random. The signing algorithm sends a tag when given the key and the message. The verifying algorithm is used to verify the authenticity of the message when given the key and tag; it will return a message of accepted if the message and tag are authentic and unaltered, but otherwise it will return a message of rejected.

For example, the sender sends a message, such as an EFT, through the MAC algorithm, which generates a key and attaches a MAC data tag to the message. The recipient gets the message, runs it back through the MAC algorithm with the same key, and gets a second data tag. He or she will then compare this MAC data tag with the first one attached to the message when it was transmitted. If the code is the same at both ends, the recipient can safely assume that the data integrity of the message is intact. If not, however, it means that the message was altered, tampered with or forged.

However, the message itself should contain some data that ensures that this message can only be sent once. For example, a one-time MAC, timestamp or sequence number could be used to guarantee that the message can only be sent once. Otherwise, the system could be vulnerable to a replay attack, in which an attacker intercepts the message after it has been decoded and retransmits it at a later time, replicating the original results and infiltrating the system.

Message Integrity Codes (MICs)

Sometimes, the term message integrity code (MIC) will be used instead of MAC. This is most often done in the communications industry, where MAC traditionally means media access control address (MAC address). However, MIC can also be used to refer to message digest, which does not use secret keys in the same manner as a MAC, and cannot offer the same level of security without further encryption.

  1. Big Mac PPP

    Big Mac PPP is a survey done by The Economist that examines the ...
  2. Negative Confirmation

    Negative confirmation is a method of communication that requests ...
  3. Mortgage Participation Certificate

    A security that groups together mortgages held by Freddie Mac, ...
  4. Algorithmic Trading

    Algorithmic trading is a system that utilizes very advanced mathematical ...
  5. Society for Worldwide Interbank ...

    Society for Worldwide Interbank Financial Telecommunications ...
  6. Municipal Assistance Corporation ...

    Municipal Assistance Corporation was created by the state of ...
Related Articles
  1. Insights

    Needle In A Haystack: Stock Message Boards

    Stock message boards provide a great opportunity to read insightful information and opinions, but watch out for "trolls."
  2. Trading

    How trading algorithms are created

    Here, we'll outline the steps quantitative traders and traders using algorithms follow in order to create their algorithms.
  3. Investing

    Facebook Creates Messaging App for Teens: Report

    Facebook is reportedly gearing up to launch a messaging app for young teens dubbed Talk.
  4. Tech

    SWIFT Admits Hackers Sent Fraudulent Messages

    Earlier this morning, SWIFT, the international consortium of financial entities, admitted that hackers sent fraudulent messages over its network.
  5. Small Business

    How WhatsApp Is Killing SMS Texting

    With nearly 1 billion users, WhatsApp is killing off cell phone carrier-based SMS texting. But how will it make money and remain dominant into the future?
  6. Trading

    Forex algorithmic trading: Understanding the basics

    Learn more about algorithmic trading in forex markets, which automates certain processes and reduces the hours needed to conduct transactions.
  7. Insights

    Detailed Ways to Protect Digital Data

    Knowing how to protect digital data has become a big concern these days. Here are four easy ways to keep your personal information safe.
  8. Small Business

    How Does Line Work and Make Money? (LN)

    Japan-based mobile messaging startup, Line, hits public markets today in a dual Japan-U.S. IPO.
  9. Investing

    Purchasing Power Parity: The Big Mac Index

    In theory, Purchasing Power Parity stands up much better than it does in reality. Find out how to evaluate currencies according to the price of a Big Mac.
  1. What is the Big Mac index?

    A survey done by The Economist magazine used to measure the purchasing power parity (PPP) between nations, using the price ... Read Answer >>
Trading Center