Changeset View
Changeset View
Standalone View
Standalone View
src/crypto/ctaes/ctaes.c
/********************************************************************* | /********************************************************************* | ||||
* Copyright (c) 2016 Pieter Wuille * | * Copyright (c) 2016 Pieter Wuille * | ||||
* Distributed under the MIT software license, see the accompanying * | * Distributed under the MIT software license, see the accompanying * | ||||
* file COPYING or http://www.opensource.org/licenses/mit-license.php.* | * file COPYING or http://www.opensource.org/licenses/mit-license.php.* | ||||
**********************************************************************/ | **********************************************************************/ | ||||
/* Constant time, unoptimized, concise, plain C, AES implementation | /* Constant time, unoptimized, concise, plain C, AES implementation | ||||
* Based On: | * Based On: | ||||
* Emilia Kasper and Peter Schwabe, Faster and Timing-Attack Resistant AES-GCM | * Emilia Kasper and Peter Schwabe, Faster and Timing-Attack Resistant AES-GCM | ||||
* http://www.iacr.org/archive/ches2009/57470001/57470001.pdf | * http://www.iacr.org/archive/ches2009/57470001/57470001.pdf | ||||
* But using 8 16-bit integers representing a single AES state rather than 8 | * But using 8 16-bit integers representing a single AES state rather than 8 | ||||
* 128-bit integers representing 8 AES states. | * 128-bit integers representing 8 AES states. | ||||
*/ | */ | ||||
▲ Show 20 Lines • Show All 569 Lines • Show Last 20 Lines |