akwizgran created page: BSP

2026-03-07 14:08:18 +01:00 · 2015-03-18 10:36:20 +00:00
parent 3be5578df9
commit 327ac3bd51
1 changed files with 1 additions and 1 deletions
--- a/BTP.markdown
+++ b/BTP.markdown
@@ -17,7 +17,7 @@ BTP uses the following cryptographic primitives:

 All keys are key_len bytes and all nonces are nonce_len bytes. The output of MAC(k, m) is mac_len bytes, and the output of ENC(k, n, m) is auth_len bytes longer than m. For simplicity we require that mac_len == key_len.

-> Implementation note: The previous version of BTP used HMAC-SHA-256 as the pseudo-random function and AES-256-GCM as the authenticated cipher. The next version will use BLAKE2s as the pseudo-random function and XSalsa20-Poly1305 as the authenticated cipher. In both cases, key_len == 32, mac_len == 32, nonce_len == 24, and auth_len == 16.
+> Implementation note: The current version of BTP uses HMAC-SHA-256 as the pseudo-random function and AES-256-GCM as the authenticated cipher. The next version will use BLAKE2s as the pseudo-random function and XSalsa20-Poly1305 as the authenticated cipher. In both cases, key_len == 32, mac_len == 32, nonce_len == 24, and auth_len == 16.

 ### Initial state