Which "extra robustness" are you talking about? GCM is not meant to handle larger amounts of data. Also the Double Ratchet protocol uses CBC internally, so this reduces the number of separate crypto primitives we need.
Gesendet: Dienstag, 10. März 2020 um 16:38 Uhr
Von: "Thilo Molitor" <[email protected]>
An: "XMPP Standards" <[email protected]>
Betreff: Re: [Standards] UPDATED: XEP-0384 (OMEMO Encryption)
Von: "Thilo Molitor" <[email protected]>
An: "XMPP Standards" <[email protected]>
Betreff: Re: [Standards] UPDATED: XEP-0384 (OMEMO Encryption)
>* Use AES256/CBC to encrypt SCE payload.
Why use CBC and not GCM for extra robustness?
- tmolitor
_______________________________________________
Standards mailing list
Info: https://mail.jabber.org/mailman/listinfo/standards
Unsubscribe: [email protected]
_______________________________________________
_______________________________________________ Standards mailing list Info: https://mail.jabber.org/mailman/listinfo/standards Unsubscribe: [email protected] _______________________________________________
