Re: [Cfrg] OCB test vectors reusing nonces
Peter Dettman <peter.dettman@bouncycastle.org> Sun, 02 February 2014 05:55 UTC
Return-Path: <peter.dettman@bouncycastle.org>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0411B1A004D for <cfrg@ietfa.amsl.com>; Sat, 1 Feb 2014 21:55:23 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.198
X-Spam-Level: *
X-Spam-Status: No, score=1.198 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, HELO_EQ_AU=0.377, HOST_EQ_AU=0.327, RELAY_IS_203=0.994] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id e0h-0cB5kjDe for <cfrg@ietfa.amsl.com>; Sat, 1 Feb 2014 21:55:21 -0800 (PST)
Received: from tauceti.org.au (mail.tauceti.org.au [203.32.61.25]) by ietfa.amsl.com (Postfix) with ESMTP id CBC511A0031 for <cfrg@irtf.org>; Sat, 1 Feb 2014 21:55:19 -0800 (PST)
X-Default-Received-SPF: pass (skip=loggedin (res=PASS)) x-ip-name=ppp-27-55-152-253.revip3.asianet.co.th;
Message-ID: <52EDDDBE.1010304@bouncycastle.org>
Date: Sun, 02 Feb 2014 12:55:10 +0700
From: Peter Dettman <peter.dettman@bouncycastle.org>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.2.0
MIME-Version: 1.0
To: cfrg@irtf.org
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Authenticated-User: peter.dettman@bouncycastle.org
Subject: Re: [Cfrg] OCB test vectors reusing nonces
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <http://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <http://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Sun, 02 Feb 2014 05:55:23 -0000
I have now verified the new test vectors from draft-irtf-cfrg-ocb-06 with the BouncyCastle implementation(s). Pete. > James, > > I've updated the OCB draft to include all your changes in the test vector section and have verified the results. Thank you very much for the suggestions and hard work implementing them. > > The one suggestion I did not include was N = N + 1 in the final vector algorithm. I felt that that might suggest an implementation as a simple counter, which can easily cause mistakes (either because of endian issues or the fact that the counter exceeds a byte), so I just kept it specified using num2str. > > Thanks Matt Caswell, too, for verifying the vectors. With three independent implementations all agreeing, I have pretty good confidence in their correctness. > > -Ted >
- [Cfrg] OCB test vectors reusing nonces Manger, James
- Re: [Cfrg] OCB test vectors reusing nonces Matt Caswell
- Re: [Cfrg] OCB test vectors reusing nonces Ted Krovetz
- Re: [Cfrg] OCB test vectors reusing nonces Manger, James
- Re: [Cfrg] OCB test vectors reusing nonces Ted Krovetz
- Re: [Cfrg] OCB test vectors reusing nonces David McGrew
- Re: [Cfrg] OCB test vectors reusing nonces Stephen Farrell
- Re: [Cfrg] OCB test vectors reusing nonces Manger, James
- Re: [Cfrg] OCB test vectors reusing nonces Matt Caswell
- Re: [Cfrg] OCB test vectors reusing nonces Manger, James
- Re: [Cfrg] OCB test vectors reusing nonces Matt Caswell
- Re: [Cfrg] OCB test vectors reusing nonces Ted Krovetz
- Re: [Cfrg] OCB test vectors reusing nonces Peter Dettman