Protecting against malicious modification in cryptographic operations

A message and an identifying parameter associated with the message are obtained. The message comprises a plurality of units. A plurality of one-unit message authentication codes is generated, wherein each one-unit message authentication code corresponds to a respective unit of the plurality of units of the message, and wherein each one-unit message authentication code is generated based on the identifying parameter associated with the message, a given one of the plurality of units, and the position of the given unit in the message. Verification of each unit of the message may then be efficiently performed inside a method of secure computation such as, by way of example only, a garbled circuit. 获得消息和与所述消息相关联的标识参数。所述消息包括多个单元。生成多个单元消息认证代码，其中每个单元消息认证代码对应于所述消息的多个单元的各自单元，以及其中基于与所述消息相关联的标识参数、所述多个单元中的给定单元、以及所述消息中的给定单元的位置，生成每个单元消息认证代码。然后可以在安全计算方法(诸如，仅作为示例，乱码电路)内部高效地执行消息的每个单元的验证。