{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,4,27]],"date-time":"2025-04-27T05:10:02Z","timestamp":1745730602837,"version":"3.40.4"},"publisher-location":"Cham","reference-count":47,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783031911064","type":"print"},{"value":"9783031911071","type":"electronic"}],"license":[{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025]]},"DOI":"10.1007\/978-3-031-91107-1_2","type":"book-chapter","created":{"date-parts":[[2025,4,27]],"date-time":"2025-04-27T04:39:47Z","timestamp":1745728787000},"page":"33-61","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Making GCM Great Again: Toward Full Security and\u00a0Longer Nonces"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0009-0002-3793-5291","authenticated-orcid":false,"given":"Woohyuk","family":"Chung","sequence":"first","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-2166-6421","authenticated-orcid":false,"given":"Seongha","family":"Hwang","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-9091-4054","authenticated-orcid":false,"given":"Seongkwang","family":"Kim","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2736-6830","authenticated-orcid":false,"given":"Byeonghak","family":"Lee","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0001-5471-9350","authenticated-orcid":false,"given":"Jooyoung","family":"Lee","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2025,4,27]]},"reference":[{"key":"2_CR1","doi-asserted-by":"publisher","unstructured":"Bellare, M., Rogaway, P., Wagner, D.: The EAX mode of operation. In: Roy, B., Meier, W. (eds.) Fast Software Encryption - FSE 2004, LNCS, vol.\u00a03017, pp. 389\u2013407. Springer (2004). https:\/\/doi.org\/10.1007\/978-3-540-25937-4_25, https:\/\/iacr.org\/archive\/fse2004\/30170391\/30170391.pdf","DOI":"10.1007\/978-3-540-25937-4_25"},{"issue":"1","key":"2_CR2","doi-asserted-by":"publisher","first-page":"13","DOI":"10.1007\/s10623-023-01288-4","volume":"92","author":"A Bhattacharjee","year":"2024","unstructured":"Bhattacharjee, A., Bhaumik, R., Dutta, A., Nandi, M., Raychaudhuri, A.: Bbb security for 5-round even-mansour-based key-alternating feistel ciphers. Des. Codes Crypt. 92(1), 13\u201349 (2024)","journal-title":"Des. Codes Crypt."},{"key":"2_CR3","doi-asserted-by":"crossref","unstructured":"Bhattacharya, S., Nandi, M.: Revisiting variable output length xor pseudorandom function. IACR Trans. Symmetric Cryptology 314\u2013335 (2018)","DOI":"10.46586\/tosc.v2018.i1.314-335"},{"key":"2_CR4","unstructured":"B\u00f6ck, H., Zauner, A., Devlin, S., Somorovsky, J., Jovanovic, P.: Nonce-disrespecting adversaries: practical forgery attacks on GCM in TLS. In: 10th USENIX Workshop on Offensive Technologies (WOOT 16). USENIX Association, Austin, TX, August 2016. https:\/\/www.usenix.org\/conference\/woot16\/workshop-program\/presentation\/bock"},{"key":"2_CR5","doi-asserted-by":"crossref","unstructured":"Chakraborti, A., Datta, N., Jha, A., Mancillas-L\u00f3pez, C., Nandi, M.: Light-ocb: parallel lightweight authenticated cipher with full security. In: International Conference on Security, Privacy, and Applied Cryptography Engineering, pp. 22\u201341. Springer (2021)","DOI":"10.1007\/978-3-030-95085-9_2"},{"key":"2_CR6","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"407","DOI":"10.1007\/978-3-030-92078-4_14","volume-title":"Advances in Cryptology \u2013 ASIACRYPT 2021","author":"W Choi","year":"2021","unstructured":"Choi, W., Lee, B., Lee, J., Lee, Y.: Toward a fully secure authenticated encryption scheme from a pseudorandom permutation. In: Tibouchi, M., Wang, H. (eds.) ASIACRYPT 2021. LNCS, vol. 13092, pp. 407\u2013434. Springer, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-92078-4_14"},{"key":"2_CR7","doi-asserted-by":"crossref","unstructured":"Cogliati, B., Dutta, A., Nandi, M., Patarin, J., Saha, A.: Proof of mirror theory for a wide range of $$\\xi $$ max. In: Annual International Conference on the Theory and Applications of Cryptographic Techniques, pp. 470\u2013501. Springer (2023)","DOI":"10.1007\/978-3-031-30634-1_16"},{"key":"2_CR8","doi-asserted-by":"crossref","unstructured":"Cogliati, B., Ethan, J., Lallemand, V., Lee, B., Lee, J., Minier, M.: Ctet+: a beyond-birthday-bound secure tweakable enciphering scheme using a single pseudorandom permutation. IACR Trans. Symmetric Cryptology 1\u201335 (2021)","DOI":"10.46586\/tosc.v2021.i4.1-35"},{"key":"2_CR9","unstructured":"Daemen, J.: Aes proposal: Rijndael (1999)"},{"key":"2_CR10","unstructured":"Dobraunig, C., Matusiewicz, K., Mennink, B., Tereschenko, A.: Efficient instances of docked double decker with AES, and application to authenticated encryption. Cryptology ePrint Archive, Paper 2024\/084 (2024), https:\/\/eprint.iacr.org\/2024\/084"},{"key":"2_CR11","doi-asserted-by":"crossref","unstructured":"Dutta, A., Nandi, M., Talnikar, S.: Beyond birthday bound secure mac in faulty nonce model. In: Annual International Conference on the Theory and Applications of Cryptographic Techniques, pp. 437\u2013466. Springer (2019)","DOI":"10.1007\/978-3-030-17653-2_15"},{"key":"2_CR12","unstructured":"Gueron, S.: Double Nonce Derive Key AES-GCM (DNDK-GCM). Internet-Draft draft-gueron-cfrg-dndkgcm-01, Internet Engineering Task Force, October 2024. https:\/\/datatracker.ietf.org\/doc\/draft-gueron-cfrg-dndkgcm\/01\/, work in Progress"},{"key":"2_CR13","doi-asserted-by":"publisher","unstructured":"Gueron, S., Langley, A., Lindell, Y.: AES-GCM-SIV: nonce misuse-resistant authenticated encryption. RFC 8452, April 2019. https:\/\/doi.org\/10.17487\/RFC8452, https:\/\/rfc-editor.org\/rfc\/rfc8452.txt","DOI":"10.17487\/RFC8452"},{"key":"2_CR14","doi-asserted-by":"crossref","unstructured":"Gueron, S., Lindell, Y.: GCM-SIV: full nonce misuse-resistant authenticated encryption at under one cycle per byte. In: Ray, I. (ed.) ACM SIGSAC Conference on Computer and Communications Security - CCS 2015, pp. 109\u2013119. Association for Computing Machinery (2015)","DOI":"10.1145\/2810103.2813613"},{"key":"2_CR15","doi-asserted-by":"publisher","unstructured":"Gueron, S., Lindell, Y.: Gcm-siv: full nonce misuse-resistant authenticated encryption at under one cycle per byte. In: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, CCS 2015, pp. 109\u2013119. Association for Computing Machinery, New York, NY, USA (2015). https:\/\/doi.org\/10.1145\/2810103.2813613","DOI":"10.1145\/2810103.2813613"},{"key":"2_CR16","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"15","DOI":"10.1007\/978-3-662-46800-5_2","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2015","author":"VT Hoang","year":"2015","unstructured":"Hoang, V.T., Krovetz, T., Rogaway, P.: Robust authenticated-encryption AEZ and the problem that it solves. In: Oswald, E., Fischlin, M. (eds.) EUROCRYPT 2015. LNCS, vol. 9056, pp. 15\u201344. Springer, Heidelberg (2015). https:\/\/doi.org\/10.1007\/978-3-662-46800-5_2"},{"key":"2_CR17","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1007\/978-3-662-53018-4_1","volume-title":"Advances in Cryptology \u2013 CRYPTO 2016","author":"VT Hoang","year":"2016","unstructured":"Hoang, V.T., Tessaro, S.: Key-alternating ciphers and key-length extension: exact bounds and multi-user security. In: Robshaw, M., Katz, J. (eds.) CRYPTO 2016. LNCS, vol. 9814, pp. 3\u201332. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-53018-4_1"},{"key":"2_CR18","unstructured":"Iso\/iec 19772:2020 information security - authenticated encryption (2020)"},{"key":"2_CR19","doi-asserted-by":"publisher","first-page":"310","DOI":"10.1007\/11799313_20","volume-title":"Fast Software Encryption","author":"T Iwata","year":"2006","unstructured":"Iwata, T.: New blockcipher modes of operation with beyond the birthday bound security. In: Robshaw, M. (ed.) Fast Software Encryption, pp. 310\u2013327. Springer, Berlin, Heidelberg (2006)"},{"key":"2_CR20","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"310","DOI":"10.1007\/11799313_20","volume-title":"Fast Software Encryption","author":"T Iwata","year":"2006","unstructured":"Iwata, T.: New Blockcipher modes of operation with beyond the birthday bound security. In: Robshaw, M. (ed.) FSE 2006. LNCS, vol. 4047, pp. 310\u2013327. Springer, Heidelberg (2006). https:\/\/doi.org\/10.1007\/11799313_20"},{"key":"2_CR21","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"125","DOI":"10.1007\/978-3-540-68164-9_9","volume-title":"Progress in Cryptology \u2013 AFRICACRYPT 2008","author":"T Iwata","year":"2008","unstructured":"Iwata, T.: Authenticated encryption mode for beyond the birthday bound security. In: Vaudenay, S. (ed.) AFRICACRYPT 2008. LNCS, vol. 5023, pp. 125\u2013142. Springer, Heidelberg (2008). https:\/\/doi.org\/10.1007\/978-3-540-68164-9_9"},{"key":"2_CR22","doi-asserted-by":"crossref","unstructured":"Iwata, T., Khairallah, M., Minematsu, K., Peyrin, T.: Duel of the titans: the romulus and remus families of lightweight aead algorithms. IACR Trans. Symmetric Cryptology 43\u2013120 (2020)","DOI":"10.46586\/tosc.v2020.i1.43-120"},{"key":"2_CR23","doi-asserted-by":"crossref","unstructured":"Iwata, T., Minematsu, K.: Stronger security variants of gcm-siv. IACR Trans. Symmetric Cryptology 134\u2013157 (2016)","DOI":"10.46586\/tosc.v2016.i1.134-157"},{"key":"2_CR24","doi-asserted-by":"crossref","unstructured":"Iwata, T., Minematsu, K., Peyrin, T., Seurin, Y.: Zmac: a fast tweakable block cipher mode for highly secure message authentication. In: Annual International Cryptology Conference, pp. 34\u201365. Springer (2017)","DOI":"10.1007\/978-3-319-63697-9_2"},{"key":"2_CR25","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"31","DOI":"10.1007\/978-3-642-32009-5_3","volume-title":"Advances in Cryptology \u2013 CRYPTO 2012","author":"T Iwata","year":"2012","unstructured":"Iwata, T., Ohashi, K., Minematsu, K.: Breaking and repairing GCM security proofs. In: Safavi-Naini, R., Canetti, R. (eds.) CRYPTO 2012. LNCS, vol. 7417, pp. 31\u201349. Springer, Heidelberg (2012). https:\/\/doi.org\/10.1007\/978-3-642-32009-5_3"},{"key":"2_CR26","doi-asserted-by":"crossref","unstructured":"Iwata, T., Seurin, Y.: Reconsidering the security bound of aes-gcm-siv. Cryptology ePrint Archive (2017)","DOI":"10.46586\/tosc.v2017.i4.240-267"},{"key":"2_CR27","doi-asserted-by":"publisher","unstructured":"Iyengar, J., Thomson, M.: QUIC: A UDP-Based Multiplexed and Secure Transport. RFC 9000, May 2021. https:\/\/doi.org\/10.17487\/RFC9000, https:\/\/www.rfc-editor.org\/info\/rfc9000","DOI":"10.17487\/RFC9000"},{"key":"2_CR28","unstructured":"Joux, A.: Authentication failures in NIST version of GCM. Comments submitted to NIST Modes of Operation Process (2006), http:\/\/csrc.nist.gov\/groups\/ST\/toolkit\/BCM\/documents\/comments\/800-38_Series-Drafts\/GCM\/Joux_comments.pdf"},{"key":"2_CR29","unstructured":"Kampanakis, P., Campagna, M., Crocket, E., Petcher, A., Gueron, S.: Practical challenges with aes-gcm and the need for a new cipher. In: Third NIST Workshop on Block Cipher Modes of Operation (2023)"},{"key":"2_CR30","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"306","DOI":"10.1007\/978-3-642-21702-9_18","volume-title":"Fast Software Encryption","author":"T Krovetz","year":"2011","unstructured":"Krovetz, T., Rogaway, P.: The software performance of authenticated-encryption modes. In: Joux, A. (ed.) FSE 2011. LNCS, vol. 6733, pp. 306\u2013327. Springer, Heidelberg (2011). https:\/\/doi.org\/10.1007\/978-3-642-21702-9_18"},{"key":"2_CR31","doi-asserted-by":"publisher","unstructured":"Lonvick, C.M., Ylonen, T.: The secure shell (SSH) transport layer protocol. RFC 4253, January 2006. https:\/\/doi.org\/10.17487\/RFC4253, https:\/\/www.rfc-editor.org\/info\/rfc4253","DOI":"10.17487\/RFC4253"},{"key":"2_CR32","unstructured":"Mattsson, J.P.: Collision attacks on galois\/counter mode (GCM). Cryptology ePrint Archive, Paper 2024\/1111 (2024), https:\/\/eprint.iacr.org\/2024\/1111"},{"key":"2_CR33","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"343","DOI":"10.1007\/978-3-540-30556-9_27","volume-title":"Progress in Cryptology - INDOCRYPT 2004","author":"DA McGrew","year":"2004","unstructured":"McGrew, D.A., Viega, J.: The security and performance of the Galois\/Counter mode (GCM) of operation. In: Canteaut, A., Viswanathan, K. (eds.) INDOCRYPT 2004. LNCS, vol. 3348, pp. 343\u2013355. Springer, Heidelberg (2004). https:\/\/doi.org\/10.1007\/978-3-540-30556-9_27"},{"key":"2_CR34","doi-asserted-by":"crossref","unstructured":"Nir, Y., Langley, A.: ChaCha20 and Poly1305 for IETF protocols. RFC 7539 (2015)","DOI":"10.17487\/RFC7539"},{"key":"2_CR35","unstructured":"Recommendation for Block Cipher Modes of Operation: Galois\/Counter Mode (GCM) and GMAC. NIST Special Publication 800-38D (2007), National Institute of Standards and Technology"},{"key":"2_CR36","doi-asserted-by":"publisher","unstructured":"Niwa, Y., Ohashi, K., Minematsu, K., Iwata, T.: Gcm security bounds reconsidered. In: FSE, pp. 385\u2013407. Springer (2015).https:\/\/doi.org\/10.1007\/978-3-662-48116-5_19, https:\/\/www.iacr.org\/archive\/fse2015\/85400168\/85400168.pdf","DOI":"10.1007\/978-3-662-48116-5_19"},{"key":"2_CR37","doi-asserted-by":"crossref","unstructured":"Patarin, J.: Luby-rackoff: 7 rounds are enough for 2 n (1- $$\\varepsilon $$) security. In: Advances in Cryptology-CRYPTO 2003: 23rd Annual International Cryptology Conference, Santa Barbara, California, USA, 17\u201321 August 2003. Proceedings 23, pp. 513\u2013529. Springer (2003)","DOI":"10.1007\/978-3-540-45146-4_30"},{"key":"2_CR38","doi-asserted-by":"crossref","unstructured":"Patarin, J.: On linear systems of equations with distinct variables and small block size. In: Information Security and Cryptology-ICISC 2005: 8th International Conference, Seoul, Korea, December 1-2, 2005, Revised Selected Papers 8, pp. 299\u2013321. Springer (2006)","DOI":"10.1007\/11734727_25"},{"key":"2_CR39","doi-asserted-by":"crossref","unstructured":"Patarin, J.: The coefficients h technique. In: International Workshop on Selected Areas in Cryptography, pp. 328\u2013345. Springer (2008)","DOI":"10.1007\/978-3-642-04159-4_21"},{"key":"2_CR40","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"33","DOI":"10.1007\/978-3-662-53018-4_2","volume-title":"Advances in Cryptology \u2013 CRYPTO 2016","author":"T Peyrin","year":"2016","unstructured":"Peyrin, T., Seurin, Y.: Counter-in-tweak: authenticated encryption modes for tweakable block ciphers. In: Robshaw, M., Katz, J. (eds.) CRYPTO 2016. LNCS, vol. 9814, pp. 33\u201363. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-53018-4_2"},{"key":"2_CR41","doi-asserted-by":"publisher","unstructured":"Rescorla, E.: The Transport Layer Security (TLS) Protocol Version 1.3. RFC 8446, August 2018. https:\/\/doi.org\/10.17487\/RFC8446, https:\/\/www.rfc-editor.org\/info\/rfc8446","DOI":"10.17487\/RFC8446"},{"key":"2_CR42","doi-asserted-by":"publisher","unstructured":"Rescorla, E., Dierks, T.: The transport layer security (TLS) protocol version 1.2. RFC 5246, August 2008. https:\/\/doi.org\/10.17487\/RFC5246, https:\/\/www.rfc-editor.org\/info\/rfc5246","DOI":"10.17487\/RFC5246"},{"key":"2_CR43","doi-asserted-by":"publisher","unstructured":"Rogaway, P.: Authenticated-encryption with associated-data. In: Proceedings of the 9th ACM Conference on Computer and Communications Security, CCS 2002, pp. 98\u2013107. Association for Computing Machinery, New York, NY, USA (2002). https:\/\/doi.org\/10.1145\/586110.586125","DOI":"10.1145\/586110.586125"},{"key":"2_CR44","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"373","DOI":"10.1007\/11761679_23","volume-title":"Advances in Cryptology - EUROCRYPT 2006","author":"P Rogaway","year":"2006","unstructured":"Rogaway, P., Shrimpton, T.: A provable-security treatment of the key-wrap problem. In: Vaudenay, S. (ed.) EUROCRYPT 2006. LNCS, vol. 4004, pp. 373\u2013390. Springer, Heidelberg (2006). https:\/\/doi.org\/10.1007\/11761679_23"},{"key":"2_CR45","doi-asserted-by":"crossref","unstructured":"Vanhoef, M., Piessens, F.: Key reinstallation attacks: forcing nonce reuse in WPA2. In: Proceedings of the 24th ACM Conference on Computer and Communications Security (CCS), ACM (2017)","DOI":"10.1145\/3133956.3134027"},{"key":"2_CR46","doi-asserted-by":"crossref","unstructured":"Wang, P., Feng, D., Wu, W.: Hctr: a variable-input-length enciphering mode. In: International Conference on Information Security and Cryptology, pp. 175\u2013188. Springer (2005)","DOI":"10.1007\/11599548_15"},{"key":"2_CR47","doi-asserted-by":"crossref","unstructured":"Whiting, D., Housley, R., Ferguson, N.: Counter with CBC-MAC (CCM). Submission to NIST (2002), https:\/\/csrc.nist.gov\/groups\/ST\/toolkit\/BCM\/documents\/proposedmodes\/ccm\/ccm.pdf","DOI":"10.17487\/rfc3610"}],"container-title":["Lecture Notes in Computer Science","Advances in Cryptology \u2013 EUROCRYPT 2025"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-91107-1_2","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,4,27]],"date-time":"2025-04-27T04:39:56Z","timestamp":1745728796000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-91107-1_2"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025]]},"ISBN":["9783031911064","9783031911071"],"references-count":47,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-91107-1_2","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025]]},"assertion":[{"value":"27 April 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"EUROCRYPT","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Annual International Conference on the Theory and Applications of Cryptographic Techniques","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Madrid","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Spain","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"4 May 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"8 May 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"44","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"eurocrypt2025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/eurocrypt.iacr.org\/2025\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}