Errata Search
RFC Number:		Errata ID:
Source of RFC		Status:	All/Any Verified+Reported Verified Reported Held for Document Update Rejected
Area Acronym:	All/Any app art gen int ops rai rtg sec tsv wit	Type:	All/Any Editorial Technical
WG Acronym:		Submitter Name:
Other:	All/Any IAB INDEPENDENT IRTF Legacy Editorial	Date Submitted:
Summary Table Full Records

RFC 5116, "An Interface and Algorithms for Authenticated Encryption", January 2008

Source of RFC: IETF - NON WORKING GROUP
Area Assignment: sec

---

Errata ID: 5233
Status: Reported
Type: Editorial
Publication Format(s) : TEXT
Reported By: Lars Maier
Date Reported: 2018-01-10

Section 5.3 says:

An AEAD_AES_128_CCM ciphertext is exactly 16 octets longer than its
 corresponding plaintext.

It should say:

An AEAD_AES_128_CCM ciphertext is exactly 2 octets longer than its
 corresponding plaintext.

Notes:

As described in NIST SP 800-38c the length of the MAC is given in bits. The algorithm specified therein at 6.2 returns a string of PLen + TLen bits.

Report New Errata