RFC 7539
E50080
RFC 7539 is an IETF standard that specifies the ChaCha20 stream cipher and the Poly1305 message authentication code for use in secure Internet protocols.
Aliases (1)
- RFC 7905 ×1
Statements (49)
| Predicate | Object |
|---|---|
| instanceOf |
IETF Request for Comments
→
cryptography standard → |
| area |
Security
→
|
| author |
Adam Langley
→
Adam Langley (editor) → Yoav Nir → |
| basedOn |
ChaCha stream cipher by Daniel J. Bernstein
→
Poly1305 MAC by Daniel J. Bernstein → |
| category |
Informational
→
|
| defines |
ChaCha20
→
ChaCha20-Poly1305 AEAD construction → IETF variant of ChaCha20 → IETF variant of ChaCha20-Poly1305 AEAD → Poly1305 → |
| definesBlockSize |
512-bit block for ChaCha20
→
|
| definesKeySize |
256-bit key for ChaCha20
→
|
| definesNonceReuseRequirement |
nonces must not repeat under the same key
→
|
| definesNonceSize |
96-bit nonce for ChaCha20 in IETF variant
→
|
| definesTagSize |
128-bit authentication tag for Poly1305
→
|
| definesTestVectors |
ChaCha20 test vectors
→
ChaCha20-Poly1305 AEAD test vectors → Poly1305 test vectors → |
| focusesOn |
high-speed software cryptography
→
message authentication codes → security of stream ciphers → |
| language |
English
→
|
| obsoletes |
RFC 8439
→
|
| organization |
Internet Research Task Force
→
|
| publishedBy |
IETF
→
Internet Engineering Task Force → |
| recommends |
use of ChaCha20-Poly1305 where AES hardware is not available
→
|
| RFCNumber |
7539
→
|
| securityProperty |
authenticity via AEAD construction
→
confidentiality via ChaCha20 → integrity via Poly1305 → |
| specifies |
AEAD_CHACHA20_POLY1305
→
ChaCha20 stream cipher → Poly1305 message authentication code → |
| status |
Informational RFC
→
|
| stream |
IETF
→
|
| targetEnvironment |
general-purpose CPUs
→
software implementations → |
| title |
ChaCha20 and Poly1305 for IETF Protocols
→
|
| updates |
None
→
|
| useCase |
IPsec
→
SSH → TLS → secure Internet protocols → |
| workingGroup |
CFRG (Crypto Forum Research Group)
→
|