all InfoSec news
A weakness in OCB3 used with short nonces allowing for a break of authenticity and confidentiality
March 6, 2023, 2:12 p.m. |
IACR News www.iacr.org
ePrint Report: A weakness in OCB3 used with short nonces allowing for a break of authenticity and confidentiality
Jean Liénardy, Frédéric Lafitte
OCB3 is a mature and provably secure authenticated encryption mode of operation which allows for associated data (AEAD).
This note reports a small flaw in the security proof of OCB3 that may cause a loss of security in practice, even if OCB3 is correctly implemented in a trustworthy and nonce-respecting module.
The flaw is present when OCB3 is …
aead confidentiality data encryption eprint report flaw loss may mode practice report reports security weakness
More from www.iacr.org / IACR News
Updatable Policy-Compliant Signatures
1 day, 1 hour ago |
www.iacr.org
Guess and Determine Analysis Based on Set Split
1 day, 1 hour ago |
www.iacr.org
Improving Generic Attacks Using Exceptional Functions
1 day, 1 hour ago |
www.iacr.org
Real-Valued Somewhat-Pseudorandom Unitaries
2 days, 5 hours ago |
www.iacr.org
Jobs in InfoSec / Cybersecurity
Cybersecurity Skills Challenge -- Sponsored by DoD
@ Correlation One | United States
Security Operations Center (SOC) Analyst
@ GK Cybersecurity Group | Remote
Lead Security Analyst
@ OpenText | Virtual, CA
Cybersecurity Research Engineer
@ Peraton | Silver Spring, MD, United States
Enterprise Security Engineer
@ Salesforce | California - San Francisco
Senior DevSecOps Engineer
@ Netcompany | Patras, Greece