About the series
Lecturer: Dr. David McGrew
Galois/Counter Mode (GCM) is a block cipher mode of operation that uses universal hashing over a binary Galois field to provide authenticated encryption. It can achieve very high speeds in hardware with low cost and low latency, and software implementations can have excellent performance by using table-driven field operations. GCM was designed for use in emerging high data rate network security standards in which these properties are critical, and has been submitted to NIST. GCM uses mechanisms that are supported by a well-understood theoretical foundation, assembled so as to provide performance and flexibility. It accepts initialization vectors of arbitrary length, and can act as a stand-alone message authentication code (MAC). Additionally, it can act as an incremental MAC, a property unique among the modes submitted to NIST. This talk provides an overview of how GCM works, why it is secure, its interesting properties, and the motivation behind it.
About the Lecturer:
Dr. David A. McGrew manages the Advanced Cryptographic Development group at Cisco Systems, Inc.. His main interest is building practical security systems using cryptography, with an emphasis on performance, scalability and deployability. His theoretical interests include cryptanalysis, the design of symmetric ciphers and message authentication codes, and information theory.
At Cisco, he researches and develops secure protocols and systems, and represents security issues on the Cisco University Research Board. He is also co-chair of the IRTF Crypto Forum Research Group, and a member of the International Association for Cryptologic Research and the IEEE Information Theory Society. He is an alumnus of The Ohio State University (B.S., Physics) and Michigan State University (Ph.D., Theoretical Nuclear Physics).
Galois/Counter Mode (GCM) is a block cipher mode of operation that uses universal hashing over a binary Galois field to provide authenticated encryption. It can achieve very high speeds in hardware with low cost and low latency, and software implementations can have excellent performance by using table-driven field operations. GCM was designed for use in emerging high data rate network security standards in which these properties are critical, and has been submitted to NIST. GCM uses mechanisms that are supported by a well-understood theoretical foundation, assembled so as to provide performance and flexibility. It accepts initialization vectors of arbitrary length, and can act as a stand-alone message authentication code (MAC). Additionally, it can act as an incremental MAC, a property unique among the modes submitted to NIST. This talk provides an overview of how GCM works, why it is secure, its interesting properties, and the motivation behind it.
About the Lecturer:
Dr. David A. McGrew manages the Advanced Cryptographic Development group at Cisco Systems, Inc.. His main interest is building practical security systems using cryptography, with an emphasis on performance, scalability and deployability. His theoretical interests include cryptanalysis, the design of symmetric ciphers and message authentication codes, and information theory.
At Cisco, he researches and develops secure protocols and systems, and represents security issues on the Cisco University Research Board. He is also co-chair of the IRTF Crypto Forum Research Group, and a member of the International Association for Cryptologic Research and the IEEE Information Theory Society. He is an alumnus of The Ohio State University (B.S., Physics) and Michigan State University (Ph.D., Theoretical Nuclear Physics).
