CWC mode
CWC is a combined encryption and message authentication mode of
operation for block ciphers with 128-bit block sizes, such as
AES.
Among its benefits: it is patent-free, parallelizable and
provably secure. In fact, CWC is currently the only privacy- and
authenticity-providing dedicated block cipher mode of operation that
has all three of these properties.
- An Internet-Draft, within the Crypto Forum Research Group,
specifying CWC-AES.
This contains reference code and test vectors.
- A research paper
describing CWC. This contains proofs of security for CWC, as well
as discussions about
performance and design decisions. This also contains a copy
of the test vectors.
- Brian Gladman has implemented CWC, and will likely make his code available for
free here.
Please mail cwc@zork.org to contact the authors.