Changeset View
Changeset View
Standalone View
Standalone View
src/crypto/ctaes/ctaes.c
| /********************************************************************* | /********************************************************************* | ||||
| * Copyright (c) 2016 Pieter Wuille * | * Copyright (c) 2016 Pieter Wuille * | ||||
| * Distributed under the MIT software license, see the accompanying * | * Distributed under the MIT software license, see the accompanying * | ||||
| * file COPYING or http://www.opensource.org/licenses/mit-license.php.* | * file COPYING or http://www.opensource.org/licenses/mit-license.php.* | ||||
| **********************************************************************/ | **********************************************************************/ | ||||
| /* Constant time, unoptimized, concise, plain C, AES implementation | /* Constant time, unoptimized, concise, plain C, AES implementation | ||||
| * Based On: | * Based On: | ||||
| * Emilia Kasper and Peter Schwabe, Faster and Timing-Attack Resistant AES-GCM | * Emilia Kasper and Peter Schwabe, Faster and Timing-Attack Resistant AES-GCM | ||||
| * http://www.iacr.org/archive/ches2009/57470001/57470001.pdf | * http://www.iacr.org/archive/ches2009/57470001/57470001.pdf | ||||
| * But using 8 16-bit integers representing a single AES state rather than 8 | * But using 8 16-bit integers representing a single AES state rather than 8 | ||||
| * 128-bit integers representing 8 AES states. | * 128-bit integers representing 8 AES states. | ||||
| */ | */ | ||||
| ▲ Show 20 Lines • Show All 569 Lines • Show Last 20 Lines | |||||