Paper 2003/070

A Critique of CCM

P. Rogaway and D. Wagner

Abstract

CCM is a conventional authenticated-encryption scheme obtained from a 128-bit block cipher. The mechanism has been adopted as the mandatory encryption algorithm in an IEEE 802.11 draft standard [15], and its use has been proposed more broadly [16,17]. In this note we point out a number of limitations of CCM. A related note provides an alternative to CCM [5].

Metadata
Available format(s)
PDF PS
Category
Secret-key cryptography
Publication info
Published elsewhere. Unknown where it was published
Keywords
modes of operationprovable security
Contact author(s)
daw @ cs berkeley edu
History
2003-04-15: received
Short URL
https://ia.cr/2003/070
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2003/070,
      author = {P.  Rogaway and D.  Wagner},
      title = {A Critique of {CCM}},
      howpublished = {Cryptology {ePrint} Archive, Paper 2003/070},
      year = {2003},
      url = {https://eprint.iacr.org/2003/070}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.