Hacker News new | past | comments | ask | show | jobs | submit login

The cryptographic answer is: yep, that sounds about right (with low confidence because the model violation is subtle).

The cryptographic engineering answer is: use OCB3 instead which doesn't have this problem :)




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: