Re: [Cfrg] Second RGLC on "AES-GCM-SIV"

"Blumenthal, Uri - 0553 - MITLL" <> Tue, 16 January 2018 16:48 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id ED1D71315D1 for <>; Tue, 16 Jan 2018 08:48:04 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -4.209
X-Spam-Status: No, score=-4.209 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01, UNPARSEABLE_RELAY=0.001] autolearn=ham autolearn_force=no
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id gJVh83Uroj1W for <>; Tue, 16 Jan 2018 08:48:02 -0800 (PST)
Received: from (LLMX2.LL.MIT.EDU []) by (Postfix) with ESMTP id 3BCFC1315BA for <>; Tue, 16 Jan 2018 08:47:55 -0800 (PST)
Received: from ( by (unknown) with ESMTP id w0GGlp4U040663; Tue, 16 Jan 2018 11:47:54 -0500
From: "Blumenthal, Uri - 0553 - MITLL" <>
To: "Paterson, Kenny" <>, "" <>
Thread-Topic: [Cfrg] Second RGLC on "AES-GCM-SIV"
Thread-Index: AQHTjumhx0aOZeXjg0alLYALVHHh9Q==
Date: Tue, 16 Jan 2018 16:47:01 +0000
Message-ID: <>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
user-agent: Microsoft-MacOutlook/f.29.0.171205
x-originating-ip: []
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha256"; boundary="B_3598948021_378731135"
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:, , definitions=2018-01-16_05:, , signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 suspectscore=0 malwarescore=0 phishscore=0 bulkscore=0 spamscore=0 mlxscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1711220000 definitions=main-1801160233
Archived-At: <>
Subject: Re: [Cfrg] Second RGLC on "AES-GCM-SIV"
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Crypto Forum Research Group <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 16 Jan 2018 16:48:05 -0000

I support publishing this RFC.

Uri Blumenthal

On 1/16/18, 11:38, "Cfrg on behalf of Paterson, Kenny" < on behalf of> wrote:

    Dear CFRG participants,
    This message starts a second 2-week RGLC on "AES-GCM-SIV: Nonce Misuse-Resistant Authenticated Encryption" (draft-irtf-cfrg-gcmsiv-07), that will end on January 30th. See for the latest version of the draft.
    We are having a second last call because, although there only were small changes to the draft in going from 06 to 07, we also had the benefit of new security analysis on the draft:
    We also had some productive discussion on the benefits of using POLYVAL versus GHASH during the previous last call period, with the thread beginning at:
    Please send your comments, as well as expression of support to publish as an RFC (or possible reasons for not doing so) in reply to this message or directly to CFRG chairs. Your feedback will help chairs to decide whether the document is ready for review by IRSG and subsequent publication as an RFC.
    Thank you,
    Alexey and Kenny
    Cfrg mailing list