%% You should probably cite draft-mcgrew-iv-gen-03 instead of this revision. @techreport{mcgrew-iv-gen-01, number = {draft-mcgrew-iv-gen-01}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-mcgrew-iv-gen/01/}, author = {David McGrew}, title = {{Generation of Deterministic Initialization Vectors (IVs) and Nonces}}, pagetotal = 25, year = 2011, month = oct, day = 31, abstract = {Many cryptographic algorithms use deterministic IVs, including CTR, GCM, CCM, GMAC. This type of IV is also called a (deterministic) nonce. Deterministic IVs must be distinct, for each fixed key, to guarantee the security of the algorithm. This note describes best practices for the generation of such IVs, and summarizes how they are generated and used in different protocols. Some problem areas are highlighted, and test considerations are outlined. This note will be useful to implementers of algorithms using deterministic IVs, and to protocol or system designers using them.}, }