Encryption + Authentication
Encrypt-Then-MAC
MAC is computed from cryptogram.
Should use two different keys.
IPSec uses it.
Encrypt-And-MAC
MAC is computed from plaintext.
MAC is not encrypted.
SSH uses it.
MAC-Then-Encrypt
MAC is computed from plaintext.
MAC is encrypted.
TLS uses it
Last updated
