[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: draft-ietf-ipsec-ciph-aes-ctr-00.txt

To: Stephen Kent <kent@bbn.com>
Subject: Re: draft-ietf-ipsec-ciph-aes-ctr-00.txt
From: Arne Ansper <arne@ats.cyber.ee>
Date: Mon, 26 Aug 2002 17:06:21 +0300 (FLE Daylight Time)
cc: Michael Richardson <mcr@sandelman.ottawa.on.ca>, <ipsec@lists.tislabs.com>
In-Reply-To: <p05100301b98fd1d2a1f5@[10.0.1.2]>
Sender: owner-ipsec@lists.tislabs.com



> I don't think we can say that CTR mode is easier to implement in
> software than CBC mode. CTR mode probably isn't any faster than CBC,
> in general, in software, since software can't generally take
> advantage of the pipelining or parallelism.

yes it can.

for example, we have implemented IDEA and Rijandel using Pentium MMX
assembler instructions. 4 blocks are encrypted at the same time. using CBC
mode we can use this optimization only for encryption. using CTR mode we
can use this optimization for decryption too.

another idea: one can use the CTR mode to reduce the latency of the
encryption process. you can use the idle CPU cycles for producing the
encrypted stream of bytes. when the packet arrives you can just XOR it
with precomputed data. this way, you can use the spare memory to decrese
the latency of your device. you cannot do this with CBC mode.

when you use only CTR mode, you don't need decryption routines :) helps to
save couple of kilobytes of code memory.

arne

Follow-Ups:
- Re: draft-ietf-ipsec-ciph-aes-ctr-00.txt
  - From: Arne Ansper <arne@ats.cyber.ee>
- Re: draft-ietf-ipsec-ciph-aes-ctr-00.txt
  - From: Stephen Kent <kent@bbn.com>

References:
- Re: draft-ietf-ipsec-ciph-aes-ctr-00.txt
  - From: Stephen Kent <kent@bbn.com>

Prev by Date: RE: draft-ietf-ipsec-ciph-aes-ctr-00.txt
Next by Date: RE: draft-ietf-ipsec-ciph-aes-ctr-00.txt
Prev by thread: Re: draft-ietf-ipsec-ciph-aes-ctr-00.txt
Next by thread: Re: draft-ietf-ipsec-ciph-aes-ctr-00.txt
Index(es):
- Date
- Thread