Since authenticate-only mode is simply a special case where the plaintext length is zero, does this standard permit an "authenticated-plus-encrypted mode"? By this, I mean a mode whereby each record contains some non-confidential data, which is, nonetheless, authenticated, plus some confidential data, which is encrypted and authenticated. I suppose such a mode might be useful if some of the Data is to be exposed for data management purposes (indexing, backup, etc), while the "meat" of the data still has to be protected.
Is this a supported way of using 1619.1? -------- ..Rob Ewan
