Lost Password?
No account yet? Register
Home arrow P1619.1 Tape Encryption
P1619.1 Authenticated Encryption PDF Print E-mail
Written by Administrator   
Thursday, 19 July 2007
Standard for Authenticated Encryption with Length Expansion for Storage Devices
(Project 1619.1 September 15, 2006 -- updated June 7, 2007)

Scope: This standard specifies requirements for cryptographic units that provide encryption and authentication for data contained within storage media. Full interchange requires additional specifications (such as compression algorithms and physical data format) that are beyond the scope of this standard.

P1619.1 Task Group Chair and Editor: Matt Ball 
The IEEE P1619.1 task group has finished developing a standard for encryption and authentication algorithms suitable for data storage devices that support expanding blocks. All of these modes using the NIST-approved AES-256 block cipher. The approved modes are as follows:
  • CCM-128-AES-256: Counter mode encryption with cipher block chaining message authentication code.
  • GCM-128-AES-256: Galois/Counter mode (counter mode encryption with 128-bit finite field message authentication code)
  • CBC-AES-256-HMAC-SHA: Cipher block chaining mode for encryption with key-hash message authentication code using secure hashing algorithm.
  • XTS-AES-256-HMAC-SHA: XTS encryption (see P1619) with key-hash message authentication code using secure hashing algorithm.

Project 1619.1 August 11, 2005, with update on September 15, 2006.

In December 2007, IEEE approved P1619.1 as IEEE Std 1619.1-2007.  IEEE Std 1619-2007 is now available on-line at the IEEE store.

To purchase from the IEEE Store, follow these instructions:
  • Go to http://www.ieee.org/
  • Click on 'Shop' at the very top
  • Click on the 'Standards' tab
  • Click below 'Search Catalog' on the right side
  • Click 'New Search'
  • Enter '1619' into the Title/Keyword field and click 'Run Search'
  • Add the appropriate standards to your Shopping Cart and check-out

For IEEE members, you can use IEEE Xplore (a different way to buy IEEE standards) if you or your company has a subscription to the Digital Library ($35/month).

IEEE 1619: http://ieeexplore.ieee.org/servlet/opac?punumber=4523925

Documents

Here is the original GCM specification by McGrew and Viega, as referenced by P1619.1.

Errata

This is the informal errata on IEEE Std 1619-2007 based on discussion from the e-mail reflector.  For official errata, see the IEEE errata sheets .

Annex C, Doc #6 and 4.6.2 Decryption inputs:

 

If the cryptographic unit is capable of returning plaintext before validating the MAC, then define the special signal PASS, describe how the host and/or controller receive such a signal, and define limits for the number of host records and bytes of plaintext that the cryptographic unit may return before checking the MAC.

 

The word “unit” is missing.

Last Updated ( Saturday, 14 August 2010 )
 
< Prev   Next >
[ Back ]
© 2010 IEEE Security in Storage Working Group
Joomla! is Free Software released under the GNU/GPL License.