AES-GCM-SIV implementations (128 and 256 bit)
Code implementations that correspond to the CFRG submission "AES-GCM-SIV: Nonce Misuse-Resistant Authenticated Encryption".
The specification draftwas posted on https://tools.ietf.org/html/draft-gueron-gcmsiv-02), on March 9, 2016. Authors:
Shay Gueron, University of Haifa and Intel Corporation
Adam Langley, Google
Yehuda Lindell, Bar Ilan University
The original GCM-SIV paper (definition and security proofs):
S. Gueron, Y. Lindell, GCM-SIV: Full Nonce Misuse-Resistant Authenticated Encryption at Under One Cycle per Byte, 22nd ACM Conference on Computer and Communications Security, 22nd ACM CCS: pages 109-119, 2015.
The ePrint version: https://eprint.iacr.org/2015/102
Software License
Copyright (c) 2016, Shay Gueron
Permission to use this code for AES-GCM-SIV is granted.