@matthew_d_green @marshray so my pal @namelessjon is curious what the specific rationale for MACing the nonce is
-
-
Replying to @bascule
@bascule@marshray@namelessjon Well, assume you don't MAC it. And I change it in flight. What would happen during decryption?1 reply 0 retweets 0 likes -
Replying to @matthew_d_green
@matthew_d_green@marshray@namelessjon an incorrect MAC key would be generated by HKDF, and the MAC verification would therefore fail2 replies 0 retweets 0 likes -
Replying to @bascule
@bascule@marshray@namelessjon Did you have HKDF in the version I first looked at?2 replies 0 retweets 0 likes
Replying to @matthew_d_green
@matthew_d_green @marshray @namelessjon no, I added it later re: concerns around nonces
7:07 PM - 16 Apr 2013
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.