User Tools
Sidebar
ae
This is an old revision of the document!
Table of Contents
++AE
The Algorithm
- Author(s): Francisco Recacha
- CAESAR submission: ++AE
Cryptanalysis
Damien Vizár pointed out in this discussion on the Cryptographic Competitions group that one can trivially forge valid ciphertext/tag pairs for input where the last block of associated data is not a multiple of the block length. This is due to the padding rule for the last associated data block: rather than using 10* padding, padding is done using only zeroes. This can be fixed using 10* padding instead.
ae.1395147979.txt.gz · Last modified: 18/03/2014 13:06:19 by mmeh
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 3.0 Unported
