# Difference between revisions of "Tetsu Iwata"

Line 1: | Line 1: | ||

'''Title''' | '''Title''' | ||

− | |||

On the Counter Collision Probability of GCM | On the Counter Collision Probability of GCM | ||

'''Abstract''' | '''Abstract''' | ||

+ | |||

A counter collision in GCM is a bad event in the sense that, once it occurs, partial information about plaintexts can leak. Both upper and lower bounds on the counter collision probability are known, and there is a large gap between them. In this talk, we narrow the gap by finding a better lower bound. | A counter collision in GCM is a bad event in the sense that, once it occurs, partial information about plaintexts can leak. Both upper and lower bounds on the counter collision probability are known, and there is a large gap between them. In this talk, we narrow the gap by finding a better lower bound. |

## Revision as of 18:16, 16 January 2013

**Title**
On the Counter Collision Probability of GCM

**Abstract**

A counter collision in GCM is a bad event in the sense that, once it occurs, partial information about plaintexts can leak. Both upper and lower bounds on the counter collision probability are known, and there is a large gap between them. In this talk, we narrow the gap by finding a better lower bound.