Home » Mailing list archives » openbsd-tech » 2010 » August » 21

Re: AES-GCM Part 1: AES-GCM implementation

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
[view in full thread]
From: Mike Belopuhov
Subject: Re: AES-GCM Part 1: AES-GCM implementation
Date: Friday, August 20, 2010 - 6:31 pm

On Fri, Aug 20, 2010 at 20:58 +0200, Mike Belopuhov wrote:

I hope this will clarify the text above:

   - requires input date to be split into blocks of 16 bytes with
     the last block padded with zeros, otherwise it yeilds erroneous
     value, i.e.:
       given block C of 16 bytes that is a concatenation of chunks
       A and B (C = A || B), then GMAC(C, Z) =/= GMAC(B, GMAC(A, Z)),
       where GMAC(X, Y) denotes GMAC application to the chunk X and
       state block Y, Z denotes initial zero block.
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
Messages in current thread:
AES-GCM Part 1: AES-GCM implementation, Mike Belopuhov, (Fri Aug 20, 11:58 am)
Re: AES-GCM Part 1: AES-GCM implementation, Mike Belopuhov, (Fri Aug 20, 6:31 pm)
Re: AES-GCM Part 1: AES-GCM implementation, Christian Weisgerber, (Sun Aug 22, 12:40 pm)
Re: AES-GCM Part 1: AES-GCM implementation, Mike Belopuhov, (Mon Aug 23, 5:09 am)
Re: AES-GCM Part 1: AES-GCM implementation, Mark Kettenis, (Mon Aug 23, 2:35 pm)
Re: AES-GCM Part 1: AES-GCM implementation, Mike Belopuhov, (Thu Sep 2, 7:12 am)