[8284] in cryptography@c2.net mail archive
Re: IBM press release - encryption and authentication
daemon@ATHENA.MIT.EDU (Bram Cohen)
Fri Dec 15 22:18:10 2000
Date: Thu, 14 Dec 2000 18:03:18 -0800 (PST)
From: Bram Cohen <bram@gawth.com>
To: Nikita Borisov <nikitab@cs.berkeley.edu>
Cc: cryptography@c2.net
In-Reply-To: <91bj7n$ir1$1@abraham.cs.berkeley.edu>
Message-ID: <Pine.LNX.4.21.0012141757400.21381-100000@ultra.gawth.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
On 14 Dec 2000, Nikita Borisov wrote:
> I think, though, that the "parallelization-friendliness" of the result
> is much more interesting than being able to encrypt and MAC at the same
> time.
Encrypt and MAC together are pretty useful too - it can result in a factor
of two improvement in speed on a single CPU system.
There's an improved version of the IBM mode at
http://csrc.nist.gov/encryption/aes/modes/ in the 'OCB mode' paper.
Clearly, it's a good idea to wait for new developments to stop happening
to use the new modes.
-Bram Cohen
"Markets can remain irrational longer than you can remain solvent"
-- John Maynard Keynes
