Difference between revisions of "Tetsu Iwata"

From ESC2013
Jump to: navigation, search
Line 5: Line 5:
  
 
A counter collision in GCM is a bad event in the sense that, once it occurs, partial
 
A counter collision in GCM is a bad event in the sense that, once it occurs, partial
information about plaintexts can leak. Both upper and lower bounds on the counter  
+
information about plaintexts can leak. Both upper and lower bounds on the counter  
 
collision probability are known, and there is a large gap between them. In this talk,
 
collision probability are known, and there is a large gap between them. In this talk,
we narrow the gap by finding a better lower bound.
+
we narrow the gap by finding a better lower bound.

Revision as of 15:06, 17 January 2013

Title On the Counter Collision Probability of GCM

Abstract

A counter collision in GCM is a bad event in the sense that, once it occurs, partial information about plaintexts can leak. Both upper and lower bounds on the counter collision probability are known, and there is a large gap between them. In this talk, we narrow the gap by finding a better lower bound.