diff options
| author | Martin Schanzenbach <mschanzenbach@posteo.de> | 2020-10-05 19:37:00 +0200 |
|---|---|---|
| committer | Martin Schanzenbach <mschanzenbach@posteo.de> | 2020-10-05 19:37:00 +0200 |
| commit | 583e83d24cf94e0842014c5e937d3ffacb4c2634 (patch) | |
| tree | ffc25e81a5742827a70f55352d901af401c0f24d | |
| parent | b07fac2be3cda8d6687023c36ef3e65e50a9cbf7 (diff) | |
| download | lsd0001-583e83d24cf94e0842014c5e937d3ffacb4c2634.tar.gz lsd0001-583e83d24cf94e0842014c5e937d3ffacb4c2634.zip | |
lengths
| -rw-r--r-- | draft-schanzen-gns.xml | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/draft-schanzen-gns.xml b/draft-schanzen-gns.xml index 523cec3..b439b7b 100644 --- a/draft-schanzen-gns.xml +++ b/draft-schanzen-gns.xml | |||
| @@ -727,13 +727,14 @@ SB == R + SHA512(R, zk', M) * A' | |||
| 727 | </t> | 727 | </t> |
| 728 | <artwork name="" type="" align="left" alt=""><![CDATA[ | 728 | <artwork name="" type="" align="left" alt=""><![CDATA[ |
| 729 | RDATA := GCM-AES-256(K, IV, BDATA) | 729 | RDATA := GCM-AES-256(K, IV, BDATA) |
| 730 | BDATA := C|T = GCM-AES-256(K, IV, RDATA) | 730 | BDATA := GCM-AES-256(K, IV, RDATA) = CIPHERTEXT | GCM_TAG |
| 731 | ]]></artwork> | 731 | ]]></artwork> |
| 732 | <t> | 732 | <t> |
| 733 | The result of the GCM encryption function is the encrypted | 733 | The result of the GCM encryption function is the encrypted |
| 734 | ciphertext "C" concatenated with the GCM authentication tag "T". | 734 | ciphertext concatenated with the 128-bit GCM authentication |
| 735 | tag "GCM_TAG". | ||
| 735 | Accordingly, the length of BDATA equals the length of the | 736 | Accordingly, the length of BDATA equals the length of the |
| 736 | RDATA plus the length of the GCM authentication tag. | 737 | RDATA plus the 16 octets of the authentication tag. |
| 737 | </t> | 738 | </t> |
| 738 | <t> | 739 | <t> |
| 739 | The key "K" and counter "IV" are derived from | 740 | The key "K" and counter "IV" are derived from |