I mean, sure, if you really want to, you can already do that with the GCM part. I would hesitate to do that to the AES-CBC-MAC part.
Your proposal would then be to dedicate the first 16 bytes (128 bits) to the extension, and the rest to GCM.
I mean, sure, if you really want to, you can already do that with the GCM part. I would hesitate to do that to the AES-CBC-MAC part.
Your proposal would then be to dedicate the first 16 bytes (128 bits) to the extension, and the rest to GCM.