There isn't any particular need to wait for the outcome of CAESAR on this one:
SIV mode has been standardized, and is appropriate for messages. (In
particular, it is a misuse-resistant / "robust" AEAD mode.)
I would consider streaming encryption as entirely out of scope for this WG. -
dlg
On Tuesday, April 28, 2015 1:57 PM, Nils Durner
<ndurner(_at_)googlemail(_dot_)com> wrote:
[OpenPGP CFB replacement]
That is already on the list. See for example AEAD at
https://wiki.gnupg.org/rfc4880bis
ah, thanks!
With the CAESAR competition conclusion being a bit more down the road -
end of 2017 - what would a suitable AE mode be?
Is it correct that the outcome of that competition might be a non-online
algorithm, meaning it it can't be used in a streaming mode (pipeline)?
This is not a stated requirement as per the Call for Submissions, that's
right. NORX is an online candidate, but I cannot say if there are any
other non-online ciphers in the lineup.
Regards,
Nils
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp