On Fri, Feb 16, 2018 at 10:17:31AM +0100, Nikos Mavrogiannopoulos wrote:
Thus, I'm sending an RFC for a high level SIV-CMAC interface with an abstraction function set, which abstract on the cipher. The cipher is then used for both CTR encryption and CMAC. (Initially I tried abstracting over cipher and MAC, which caused a very complex interface, such as functions with 13+ parameters).
That abstraction seems to have a cost on safety as in _siv_s2v() function I simulated the cipher context using an array. Is there a better way to capture that on nettle?
Is there any feedback on this RFC?
I'd be very interested in the AES-SIV-CMAC support in nettle+gnutls. It will be needed for authenticating NTP packets using the upcoming Network Time Security protocol [1], which I'd like to see supported in the chrony NTP client/server implementation.
[1] https://datatracker.ietf.org/doc/draft-ietf-ntp-using-nts-for-ntp/