Hi Pieter, [ Adding in -devel, because this really is more of a devel topic. ]
On 15-03-19 15:29, Pieter Hulshoff wrote: > I was wondering why the authentication tag is transmitted before the > encrypted data in stead of after it (like in e.g. MACsec). As far as I understand, mostly because the V1 data channel protocol put the HMAC before the ciphertext. James might remember why the original data channel protocol put the tag in front. The current GCM wire spec was proposed by James in <54648eac.70...@openvpn.net> (https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg09516.html). I had a short (off-list) discussion with James in 2015 where I proposed moving the tag to the end of the data frame, to facilitate hardware implementations. But because (software) implementation of the proposed protocol had already progressed, we ended up not adopting that proposal. -Steffan _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
