[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]


From: Jeff Burdges
Subject: AEADs
Date: Wed, 21 Sep 2022 11:56:05 +0200

I've a friend using ERIS which is
based on and someone audited.

It does some signature check instead of using an AEAD, which maybe fine,
and maybe better for encryption-at-rest, about which they seemingly
care, but maybe also leaks something via side channels if done wrong,
like maybe if decryption occurs first.

Can anyone give me some background on what this stuff is really for? 
Why the encryption-at-rest appears?

And:  Why does it not use an AEAD like chacha20-poly1305?

I know less than I should about encryption-at-rest, just that it's
historically fucked up as much as other things, but less studied than 


reply via email to

[Prev in Thread] Current Thread [Next in Thread]