The purpose of the buffering is for security or conforming to the spec
as far as I am concerned.
We can't do the buffering in CICO classes as JCE Cipher class can be
used directly.
It seems best to handle this in the internal GCM implementation classes
since CipherCore is somewhat general and
I think the RFC might require that the auth tag gets checked first before any
data from the block gets released to the application, to prevent performing any
processing on any data that turns out to be insecure.
Matthew.
--
Sent from my mobile device.
Xuelei Fan wrote:
>Hi Valerie,
>
>CC Bra
Hi Valerie,
CC Brad.
We start to run into the pain to get authentication tag appended in the
tail of cipher text in our design.
I looked back the discussion when we designed the APIs for GCM cipher in
JDK 7. I found that when we run into GCM mode cipher operations, we may
need to update the sou
Xuelei,
Here is another GCM and CipherInputStream/CipherOutputStream related
fix, i.e. for
8012900: CICO ignores AAD in GCM mode
The key changes are in CipherCore.java, GalorisCounterMode.java, the
rest files only have minor changes.
Essentially, when using AES/GCM cipher in decryption mode,
