Quote:
Originariamente inviato da jepessen
Mentre l'algoritmo di Google è più testato e documentato? Tanto per sapere, data la mia ignoranza in merito...
|
Da quello che ho capito fa uso di un stream cipher già collaudato, HPolyC è solo un "modo" di usare uno stream cipher come un block cipher:
Quote:
|
Originariamente inviato da Phoronix
What Google is working on is a new encryption mode called HPolyC. The HPolyC implementation uses the ChaCha stream cipher for disk encryption and have a stronger notion of security than XTS thanks to true wide-block modes.
Google's Eric Biggers wrote, "HPolyC is a construction, not a primitive. It is proven secure if XChaCha and AES are secure, subject to a security bound. Unless there is a mistake in this proof, one therefore does not need to trust HPolyC; one need only trust XChaCha (which itself has a security reduction to ChaCha) and AES... We attest that no "backdoor" or other weakness was inserted into HPolyC, its implementation, or any other aspect of our work; and that to the best of our knowledge, HPolyC's security proof is correct. You don't have to trust us, though: since HPolyC is a construction, not a primitive, its security proof can be independently verified by anyone."
|
Fonte:
https://www.phoronix.com/scan.php?pa...lyC-Encryption
Altra fonte (più "diretta"):
https://lwn.net/Articles/761993/