Efficient Authentication of Large, Dynamic Data Sets Using Galois/Counter Mode (GCM)

Authors:
David McGrew
Affiliations:
Cisco Systems, Inc., USA
Venue:
SISW '05 Proceedings of the Third IEEE International Security in Storage Workshop
Year:
2005

Citing 0
Cited 3

Athos: Efficient Authentication of Outsourced File Systems

ISC '08 Proceedings of the 11th international conference on Information Security
Protect Disk Integrity: Solid Security, Fine Performance and Fast Recovery

ISA '09 Proceedings of the 3rd International Conference and Workshops on Advances in Information Security and Assurance
Security enhancement for space telecommand link

ICICS'09 Proceedings of the 7th international conference on Information, communications and signal processing

Quantified Score

Hi-index	0.00

Visualization

Abstract

The Galois/Counter Mode (GCM) of operation can be used as an incremental Message Authentication Code (MAC); in this respect, it is unique among the crypto algorithms used in practice. We show that it has this property, and show how to efficiently recompute a MAC after small changes within a message, after the appending or prepending of data to a message, or the truncation of data from the start or end of a message. Incremental MACs have great utility for protecting data at rest. In particular, they can be used to protect a large, dynamic data set using only a small, constant amount of memory.