@Daeinar |A| and |Z| are usually very small so this is acceptable.
-
-
Replying to @jedisct1
Ah yes, makes sense, I guess that works fine (also with auth. of additional data).
2 replies 0 retweets 0 likes
Replying to @Daeinar
If an attacker sends many messages whose tag doesn’t verify, having a single pass decryption function is a big win over two passes.
8:09 AM - 7 Jul 2017
0 replies
0 retweets
1 like
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.