[Cryptography] Non-deterministic PRF as a MAC-and-Nonce for AEAD?
Alfie John
alfie at alfie.wtf
Sun May 20 19:26:52 EDT 2018
Hi everyone,
Quick question on if this would work as a safe AEAD scheme:
If you use a non-deterministic PRF instead of a MAC when doing
MAC-then-Encrypt, could the NDPRF be safely used as the nonce (or
used to deterministically generate a nonce) to the cipher as it
should never be repeated given the same plaintext?
Alfie
--
Alfie John
https://www.alfie.wtf
More information about the cryptography
mailing list