Age | Commit message (Collapse) | Author | |
---|---|---|---|
2012-09-15 | Rework some parts of the AES128-GCM method | Matthias Schiffer | |
These changes improve the performance of the AES128-GCM method by ~10% on my Intel CPU when compiled with -O2. Furthermore, the AES and the GHASH parts are separated now, allowing to switch to other implementations of the algorithms more easily. | |||
2012-09-14 | Critical: fix various problems in the AES128-GCM method | Matthias Schiffer | |
There were several bugs in the code that were severely lowering the expected security and completely breaking compatiblity with alternative implementations. The fixed version is checked against the test vectors specified in [1], and should thus be correct. [1] http://csrc.nist.gov/groups/ST/toolkit/BCM/documents/proposedmodes/gcm/gcm-revised-spec.pdf | |||
2012-06-27 | Remove unneeded size bytes from GCM to suppress warnings | Matthias Schiffer | |
2012-06-27 | Implement GCM with lookup table | Matthias Schiffer | |
2012-06-27 | Optimized GCM implementation | Matthias Schiffer | |
2012-06-27 | Primitive aes128-gcm implementation | Matthias Schiffer | |