1. Alexandra, B., Jean, P.D., Kenneth, G.P., Martijn, S.: On symmetric encryption with distinguishable decryption failures. In: International Workshop on Fast Software Encryption, pp. 367–390. Springer (2013). https://doi.org/10.1007/978-3-662-43933-3_19

2. Colin, B., Britta, H.: Secure channels and termination: The last word on tls. Cryptology ePrint Archive, Report 2017/784 (2017). https://eprint.iacr.org/2017/784

3. Colin, B., Britta, H., Stig, F.M., Douglas, S.: From stateless to stateful: Generic authentication and authenticated encryption constructions with application to TLS. Cryptology ePrint Archive, Report 2015/1150 (2015). https://eprint.iacr.org/2015/1150

4. Mihir, B., Tadayoshi, K., Chanathip, N.: Authenticated encryption in SSH: provably fixing the ssh binary packet protocol. In: Proceedings of the 9th ACM Conference on Computer and Communications Security, pp. 1–11. ACM (2002)

5. Dodis, Y., Grubbs, P., Ristenpart, T., Woodage, J.: Fast message franking: from invisible salamanders to encryptment. In: Shacham, H., Boldyreva, A. (eds.) CRYPTO 2018. LNCS, vol. 10991, pp. 155–186. Springer, Cham (2018). https://doi.org/10.1007/978-3-319-96884-1_6