cryptography icon indicating copy to clipboard operation
cryptography copied to clipboard

Published 20 hours ago verified publisher icon pyca

Adding GCM-SIV mode for AES

Open tasket opened this issue 3 years ago • 1 comments

OpenSSL has recently added a GCM-SIV mode for AES. This mode offers nonce-reuse resistance for projects that require safe and repeated use of the same keys (databases, incremental backups, etc.) while maintaining relatively high throughput vs the low throughput of plain SIV mode.

tasket avatar Aug 20 '22 12:08 tasket

We’ll be happy to add this once an openssl release ships with it. Is it planned for 3.1 now? I don’t believe that release has a date yet unfortunately.

reaperhulk avatar Aug 20 '22 16:08 reaperhulk

Looks like this isn't in 3.1.0 so it will (hopefully) be in 3.2.0.

reaperhulk avatar Jan 05 '23 11:01 reaperhulk

We're going to track this in #9795 now that 3.2's release is imminent.

reaperhulk avatar Oct 28 '23 14:10 reaperhulk