The Security and Performance of the Galois/Counter Mode of Operation (Full Version)

The recently introduced Galois/Counter Mode (GCM) of operation for block ciphers provides both encryption and message authentication, using universal hashing based on multiplication in a binary finite field. We analyze its security and performance, and show that it is the most efficient mode of operation for high speed packet networks, by using a realistic model of a network crypto module and empirical data from studies of Internet traffic in conjunction with software experiments and hardware designs. GCM has several useful features: it can accept IVs of arbitrary length, can act as a stand-alone message authentication code (MAC), and can be used as an incremental MAC. We show that GCM is secure in the standard model of concrete security, even when these features are used. We also consider several of its important system-security aspects

The Extended Codebook (XCB) Mode of Operation

We describe a block cipher mode of operation that implements a `tweakable\u27 (super) pseudorandom permutation with an arbitrary block length. This mode can be used to provide the best possible security in systems that cannot allow data expansion, such as disk-block encryption and some network protocols. The mode accepts an additional input, which can be used to protect against attacks that manipulate the ciphertext by rearranging the ciphertext blocks. Our mode is similar to a five-round Luby-Rackoff cipher in which the first and last rounds do not use the conventional Feistel structure, but instead use a single block cipher invocation. The third round is a Feistel structure using counter mode as a PRF. The second and fourth rounds are Feistel structures using a universal hash function; we re-use the polynomial hash over a binary field defined in the Galois/Counter Mode (GCM) of operation for block ciphers. This choice provides efficiency in both hardware and software and allows for re-use of implementation effort. XCB also has several useful properties: it accepts arbitrarily-sized plaintexts and associated data, including any plaintexts with lengths that are no smaller than the width of the block cipher. This document is a pre-publication draft manuscript

Multiple forgery attacks against Message Authentication Codes

Some message authentication codes (MACs) are vulnerable to multiple forgery attacks, in which an attacker can gain information that allows her to succeed in forging multiple message/tag pairs. This property was first noted in MACs based on universal hashing, such as the Galois/Counter Mode (GCM) of operation for block ciphers. However, we show that CBC-MAC and HMAC also have this property, and for some parameters are more vulnerable than GCM. We present multiple-forgery attacks against these algorithms, then analyze the security against these attacks by using the expected number of forgeries. We compare the different MACs using this measure. This document is a pre-publication draft manuscript

The Security of the Extended Codebook (XCB) Mode of Operation

The XCB mode of operation was outlined in 2004 as a contribution to the IEEE Security in Storage effort, but no security analysis was provided. In this paper, we provide a proof of security for XCB, and show that it is a secure tweakable (super) pseudorandom permutation. Our analysis makes several new contributions: it uses an algebraic property of XCB\u27s internal universal hash function to simplify the proof, and it defines a nonce mode in which XCB can be securely used even when the plaintext is shorter than twice the width of the underlying block cipher. We also show minor modifications that improve the performance of XCB and make it easier to analyze. XCB is interesting because it is highly efficient in both hardware and software, it has no alignment restrictions on input lengths, it can be used in nonce mode, and it uses the internal functions of the Galois/Counter Mode (GCM) of operation, which facilitates design re-use and admits multi-purpose implementations

PRÓS E CONTRAS DA GLOBALIZAÇÃO

A PRESENTE OBRA TEM COMO PREMISSA PRINCIPAL INTRODUZIR O DEBATE QUE TEM SIDO FLAGRANTE, PRINCIPALMENTE NA ÚLTIMA DÉCADA DO SÉCULO XX, SOBRE O FENÔMENO DA GLOBALIZAÇÃO. PARA TANTO, OS AUTORES CONSULTARAM UMA VASTA BIBLIOGRAFIA DE DOIS GRANDES GRUPOS QUE DISCUTEM A GLOBALIZAÇÃO EM LADOS OPOSTOS, OS GLOBALISTAS E OS CÉTICOS. PASSANDO POR MUITOS TEMAS IMPORTANTES PARA A DISCUSSÃO DO FENÔMENO GLOBALIZANTE, IDENTIFICAM-SE AS VISÕES DOS CÉTICOS E DOS GLOBALISTAS SOBRE CADA ASSUNTO TRATADO DE UMA MANEIRA QUE TORNA FÁCIL A COMPREENSÃO POR PARTE DO LEITOR

Dynamic Analysis of Vascular Morphogenesis Using Transgenic Quail Embryos

Background: One of the least understood and most central questions confronting biologists is how initially simple clusters or sheet-like cell collectives can assemble into highly complex three-dimensional functional tissues and organs. Due to the limits of oxygen diffusion, blood vessels are an essential and ubiquitous presence in all amniote tissues and organs. Vasculogenesis, the de novo self-assembly of endothelial cell (EC) precursors into endothelial tubes, is the first step in blood vessel formation [1]. Static imaging and in vitro models are wholly inadequate to capture many aspects of vascular pattern formation in vivo, because vasculogenesis involves dynamic changes of the endothelial cells and of the forming blood vessels, in an embryo that is changing size and shape. Methodology/Principal Findings: We have generated Tie1 transgenic quail lines Tg(tie1:H2B-eYFP) that express H2B-eYFP in all of their endothelial cells which permit investigations into early embryonic vascular morphogenesis with unprecedented clarity and insight. By combining the power of molecular genetics with the elegance of dynamic imaging, we follow the precise patterning of endothelial cells in space and time. We show that during vasculogenesis within the vascular plexus, ECs move independently to form the rudiments of blood vessels, all while collectively moving with gastrulating tissues that flow toward the embryo midline. The aortae are a composite of somatic derived ECs forming its dorsal regions and the splanchnic derived ECs forming its ventral region. The ECs in the dorsal regions of the forming aortae exhibit variable mediolateral motions as they move rostrally; those in more ventral regions show significant lateral-to-medial movement as they course rostrally. Conclusions/Significance: The present results offer a powerful approach to the major challenge of studying the relative role(s) of the mechanical, molecular, and cellular mechanisms of vascular development. In past studies, the advantages of the molecular genetic tools available in mouse were counterbalanced by the limited experimental accessibility needed for imaging and perturbation studies. Avian embryos provide the needed accessibility, but few genetic resources. The creation of transgenic quail with labeled endothelia builds upon the important roles that avian embryos have played in previous studies of vascular development

Optical Atomic Clock Comparison through Turbulent Air

We use frequency comb-based optical two-way time-frequency transfer (O-TWTFT) to measure the optical frequency ratio of state-of-the-art ytterbium and strontium optical atomic clocks separated by a 1.5 km open-air link. Our free-space measurement is compared to a simultaneous measurement acquired via a noise-cancelled fiber link. Despite non-stationary, ps-level time-of-flight variations in the free-space link, ratio measurements obtained from the two links, averaged over 30.5 hours across six days, agree to $6\times10^{-19}$, showing that O-TWTFT can support free-space atomic clock comparisons below the $10^{-18}$ level

Tourism and Economic Globalization: An Emerging Research Agenda

Globalization characterizes the economic, social, political, and cultural spheres of the modern world. Tourism has long been claimed as a crucial force shaping globalization, while in turn the developments of the tourism sector are under the influences of growing interdependence across the world. As globalization proceeds, destination countries have become more and more susceptible to local and global events. By linking the existing literature coherently, this study explores a number of themes on economic globalization in tourism. It attempts to identify the forces underpinning globalization and assess the implications on both the supply side and the demand side of the tourism sector. In view of a lack of quantitative evidence, future directions for empirical research have been suggested to investigate the interdependence of tourism demand, the convergence of tourism productivity, and the impact of global events