RFC 8452

AES-GCM-SIV: Nonce Misuse-Resistant Authenticated Encryption, April 2019

File formats:
icon for text file icon for PDF icon for HTML icon for inline errata
S. Gueron
A. Langley
Y. Lindell

Cite this RFC: TXT  |  XML  |   BibTeX

DOI:  https://doi.org/10.17487/RFC8452

Discuss this RFC: Send questions or comments to the mailing list cfrg@irtf.org

Other actions: View Errata  |  Submit Errata  |  Find IPR Disclosures from the IETF  |  View History of RFC 8452


This memo specifies two authenticated encryption algorithms that are nonce misuse resistant -- that is, they do not fail catastrophically if a nonce is repeated.

This document is the product of the Crypto Forum Research Group.

For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 8729.

Advanced Search