Capabilities occupy 72 bytes using generous 64-bit values for block
numbers. The replay epoch number has 64 bits, the nonce plus random
padding for encryption use 128 bits, and the MAC has 160 bits. Thus, the
total security data in a disk request is 116 bytes compared to up to
8192 bytes of payload.