diff options
author | Martin Schanzenbach <mschanzenbach@posteo.de> | 2020-10-05 19:37:00 +0200 |
---|---|---|
committer | Martin Schanzenbach <mschanzenbach@posteo.de> | 2020-10-05 19:37:00 +0200 |
commit | 583e83d24cf94e0842014c5e937d3ffacb4c2634 (patch) | |
tree | ffc25e81a5742827a70f55352d901af401c0f24d | |
parent | b07fac2be3cda8d6687023c36ef3e65e50a9cbf7 (diff) | |
download | lsd0001-583e83d24cf94e0842014c5e937d3ffacb4c2634.tar.gz lsd0001-583e83d24cf94e0842014c5e937d3ffacb4c2634.zip |
lengths
-rw-r--r-- | draft-schanzen-gns.xml | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/draft-schanzen-gns.xml b/draft-schanzen-gns.xml index 523cec3..b439b7b 100644 --- a/draft-schanzen-gns.xml +++ b/draft-schanzen-gns.xml | |||
@@ -727,13 +727,14 @@ SB == R + SHA512(R, zk', M) * A' | |||
727 | </t> | 727 | </t> |
728 | <artwork name="" type="" align="left" alt=""><![CDATA[ | 728 | <artwork name="" type="" align="left" alt=""><![CDATA[ |
729 | RDATA := GCM-AES-256(K, IV, BDATA) | 729 | RDATA := GCM-AES-256(K, IV, BDATA) |
730 | BDATA := C|T = GCM-AES-256(K, IV, RDATA) | 730 | BDATA := GCM-AES-256(K, IV, RDATA) = CIPHERTEXT | GCM_TAG |
731 | ]]></artwork> | 731 | ]]></artwork> |
732 | <t> | 732 | <t> |
733 | The result of the GCM encryption function is the encrypted | 733 | The result of the GCM encryption function is the encrypted |
734 | ciphertext "C" concatenated with the GCM authentication tag "T". | 734 | ciphertext concatenated with the 128-bit GCM authentication |
735 | tag "GCM_TAG". | ||
735 | Accordingly, the length of BDATA equals the length of the | 736 | Accordingly, the length of BDATA equals the length of the |
736 | RDATA plus the length of the GCM authentication tag. | 737 | RDATA plus the 16 octets of the authentication tag. |
737 | </t> | 738 | </t> |
738 | <t> | 739 | <t> |
739 | The key "K" and counter "IV" are derived from | 740 | The key "K" and counter "IV" are derived from |