GCM Update
نویسنده
چکیده
Recently, Niels Ferguson submitted comments to NIST detailing an attack on GCM message authentication when authentication tags are truncated [3]. This work underscores the risks of using GCM with very short tags, and highlights the need for guidance on tag length. However, it does not violate the claims of GCM’s security analysis [4], nor does it present any weakness that was not described in that analysis. GCM is able to provide high levels of security, a fact that Ferguson does not dispute.
منابع مشابه
AES-GCM-SIV: Specification and Analysis
In this paper, we describe and analyze the security of the AES-GCM-SIV mode of operation, as defined in the CFRG specification [10]. This mode differs from the original GCM-SIV mode that was designed in [11] in two main aspects. First, the CTR encryption uses a 127-bit pseudo-random counter instead of a 95-bit pseudo-random value concatenated with a 32-bit counter. This construction leads to im...
متن کاملFast Computation of CO2 Cooling Rates for a Mars GCM
We present and discuss a new parameterization of the radiative cooling rates by CO2 at 15-micron in the Martian atmosphere. The new scheme, which is under development, is specially designed to be implemented in Mars’ global circulation models. It builds and improves upon a previous parameterization, currently in use in most GCMs. We will discuss briefly the needs for the present update and the ...
متن کاملA Multimodel Update on the Detection and Attribution of Global Surface Warming
This paper presents an update on the detection and attribution of global annual mean surface air temperature changes, using recently developed climate models. In particular, it applies a new methodology that permits the inclusion of many more general circulation models (GCMs) into the analysis, and it also includes more recent observations. This methodology involves fitting a series of energy b...
متن کاملTranscriptional control of glial and blood cell development in Drosophila: cis-regulatory elements of glial cells missing.
In Drosophila, glial cell differentiation requires the expression of glial cells missing (gcm) in multiple neural cell lineages, where gcm acts as a binary switch for glial vs. neuronal fate. Thus, the primary event controlling gliogenesis in neural progenitors is the transcription of gcm. In addition, gcm is also required for the differentiation of macrophages, and is expressed in the hemocyte...
متن کاملStronger Security Variants of GCM-SIV
At CCS 2015, Gueron and Lindell proposed GCM-SIV, a provably secure authenticated encryption scheme that remains secure even if the nonce is repeated. While this is an advantage over the original GCM, we first point out that GCM-SIV allows a trivial distinguishing attack with about 248 queries, where each query has one plaintext block. This shows the tightness of the security claim and does not...
متن کامل