[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: 128 bit block ciphers

To: wk@xxxxxxxxxxxxxxxxx (Werner Koch)
Subject: Re: 128 bit block ciphers
From: Uri Blumenthal <uri@xxxxxxxxxxxxxx>
Date: Mon, 29 Jun 1998 12:29:31 -0400 (EDT)
Cc: ietf-open-pgp@xxxxxxx
In-reply-to: <> from "Werner Koch" at Jun 29, 98 10:33:09 am
Reply-to: uri@xxxxxxxxxxxxxx
Sender: owner-ietf-open-pgp@xxxxxxx

Werner Koch says:
> How does OpenPGP cope with 128 bit block ciphers (AES)?
>    The data is encrypted in CFB mode, with a CFB shift size equal to
>    the cipher's block size.  The Initial Vector (IV) is specified as
>    all zeros.  Instead of using an IV, OpenPGP prefixes a 10-octet
>    string to the data before it is encrypted.  The first eight octets
>    are random, and the 9th and 10th octets are copies of the 7th and
> Wouldn't it be better to prefix it with 16 random bytes for 128 bit
> ciphers?  Maybe we can remove the special CFB mode for these ciphers?

Yes, it would be better to follow your propossal.
-- 
Regards,
Uri		uri@xxxxxxxxxxxxxx
-=-=-=-=-=-=-
<Disclaimer>

References:
- 128 bit block ciphers
  - From: Werner Koch

Prev by Date: Re: Question and note
Next by Date: Re: Question and note
Previous by thread: Re: 128 bit block ciphers
Next by thread: Re: 128 bit block ciphers
Index(es):
- Date
- Thread