[Resource Topic] 2024/051: Limits on Authenticated Encryption Use in TLS

Welcome to the resource topic for 2024/051

Title:
Limits on Authenticated Encryption Use in TLS

Authors: Atul Luykx, Kenneth G. Paterson

Abstract:

This technical note presents limits on the security (as a function of the number of plaintext bytes encrypted and the number of forgery attempts made by an adversary) for the main Authenticated Encryption schemes available in TLS 1.2 and the draft of TLS 1.3. These limits are derived from security proofs for the considered schemes available in the literature. Our intention is to provide considered technical input to on-going discussions in the TLS Working Group of the IETF concerning, amongst other things, the necessity of adding a key update feature to the TLS 1.3 specification.

ePrint: https://eprint.iacr.org/2024/051

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .