On The Exact Security of Message Authentication Using Pseudorandom Functions. ToSC 2017, 2017 (1), 427-448. https://doi.org/10.13154/tosc.v2017.i1.427-448.