TLS nonce-nse
The text discusses the importance of Initialization Vectors (IVs) or nonces in encryption schemes. IVs provide non-determinism to make duplicate encrypted messages indistinguishable from each other. They are usually not secret and are distributed prepended to the ciphertext since they are necessary for decryption. The text also covers how different versions of TLS handle nonces, including RC4, CBC in TLS 1.0, TLS 1.1, TLS 1.2 GCM, and TLS 1.3. It concludes by discussing the importance of Nonce Reuse Resistance to mitigate adverse consequences when the same nonce is reused or is predictable.
Company
Cloudflare
Date published
Oct. 12, 2016
Author(s)
Filippo Valsorda
Word count
1051
Language
English
Hacker News points
10