Re: [quicwg/base-drafts] Add retry integrity tag (#3120)

David Schinazi <> Wed, 30 October 2019 21:32 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 7C7B01208F8 for <>; Wed, 30 Oct 2019 14:32:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -6.382
X-Spam-Status: No, score=-6.382 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_24=1.618, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id fWWDvwOP7tb9 for <>; Wed, 30 Oct 2019 14:32:30 -0700 (PDT)
Received: from ( []) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id E12111200D6 for <>; Wed, 30 Oct 2019 14:32:29 -0700 (PDT)
Received: from ( []) by (Postfix) with ESMTP id 032C76E152F for <>; Wed, 30 Oct 2019 14:32:29 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=pf2014; t=1572471149; bh=H63YCDMiqF8Mclbb+ijiAqhTO82yBZruB7SOqAGr2ss=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=CuRSeNpr6SKmh1/OxsLDTsNMi2joeQitI3WYK+bxzJdjvcHkI4vuzvfIgLvW015y1 y/WUsF7eYJ7ZYxMl1HixNXGeadl93cdJPkquJiJRSeUp+XTDGXg0NXT/rz8l9fUg11 WjEzVZg6l97iV7s63+5wKEFH2kMBuTyK30wt5RrA=
Date: Wed, 30 Oct 2019 14:32:28 -0700
From: David Schinazi <>
Reply-To: quicwg/base-drafts <>
To: quicwg/base-drafts <>
Cc: Subscribed <>
Message-ID: <quicwg/base-drafts/pull/3120/>
In-Reply-To: <quicwg/base-drafts/pull/>
References: <quicwg/base-drafts/pull/>
Subject: Re: [quicwg/base-drafts] Add retry integrity tag (#3120)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5dba016ce90bf_47a53f9558ecd95c891fc"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: DavidSchinazi
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
Archived-At: <>
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Wed, 30 Oct 2019 21:32:31 -0000

@kazuho encrypting using AES-GCM with an all-zero key and all-zero nonce is just a XOR operation between a known string and the cleartext so the performance cost is very low.

@mikkelfj QUICv1 uses AES-GCM for Initial packets so all QUIC clients need AES-GCM support. You're free to build a different version of QUIC that only uses ChaChaPoly, but that won't impact the design of QUICv1.

You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub: