Join Log in
Score:3
Ievgeni avatar Crypto

Why the polynomial of GCM is primitive?

cn flag
Ievgeni

I'm interested on the polynomial used in GCM-mode : $X^{128}+X^7+X^2+X+1$

This polynomial is Primitive (in $\mathbb{F}_2$). What is the interest of choosing a primitive polynomial and not a simple irreducible polynomial? Is it a coincidence?

376
2 + 0
ctr
gcm
Score:5
Daniel S avatar Crypto
ru flag
Daniel S

I think that it is more relevant that this is the lexicographically-first degree 128 polynomial that is irreducible. This follows the example of the AES polynomial $X^8+X^4+X^3+X+1$ which is also the lexicographically-first irreducible of degree 8 (though not primitive). The primitivity is, I think, coincidental.

In the degree 128 case, the lexicographic choice leads to more efficient reduction processes, but probably just the lexicographically-first=nothing-up-my-sleeve is the principal motivation.

+ 1
kodlu avatar
sa flag
kodlu
could the ability to generate an arbitrary 'phase' bitstring via a primitive LFSR be relevant?
0
Reply
Score:5
Marc Ilunga avatar Crypto
tr flag
Marc Ilunga

The choice of the polynomial is explained in the GCM specification. Being primitive didn't really play a role, but the designers were interested in a low-weight irreducible polynomial that in turns allow efficient implementation. The GCM polynomial is found in the table of low weight polynomials in this document (searching for 128,7,2,1).

+ 0
ธงชาติไทย
Elon Musk
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.