diff options
| author | Jakob Unterwurzacher | 2015-12-19 14:41:39 +0100 |
|---|---|---|
| committer | Jakob Unterwurzacher | 2015-12-19 15:02:29 +0100 |
| commit | 1caa9258685fa5fad8935d3bfcd0eac7d7f84f1e (patch) | |
| tree | abc1e46f269f9ef8f05d812e13fcdf2bae68d298 /Documentation/SECURITY.md | |
| parent | 88826dc51d7919ef8b190c079955230e653323e2 (diff) | |
Increase GCM IV size from 96 to 128 bits
This pushes back the birthday bound for collisions to make it virtually
irrelevant.
Diffstat (limited to 'Documentation/SECURITY.md')
| -rw-r--r-- | Documentation/SECURITY.md | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/Documentation/SECURITY.md b/Documentation/SECURITY.md index dff2fab..a49994a 100644 --- a/Documentation/SECURITY.md +++ b/Documentation/SECURITY.md @@ -18,7 +18,7 @@ File Contents All file contents are encrypted using AES-256-GCM (Galois/Counter Mode). Files are segmented into 4KB blocks. Each block gets a fresh random -96 bit IV each time it is modified. A 128-bit authentication tag (GHASH) +128 bit IV each time it is modified. A 128-bit authentication tag (GHASH) protects each block from modifications. Each file has a header containing a random 128-bit file ID. The |