[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Sample Twofish message

To: ietf-open-pgp@xxxxxxx
Subject: Re: Sample Twofish message
From: Werner Koch <wk@xxxxxxxxxxxxxxxxx>
Date: Fri, 9 Apr 1999 20:28:33 +0200
In-reply-to: <199904091702.KAA02554@xxxxxxxxxxxxxxx>; from hal@xxxxxxxx on Fri, Apr 09, 1999 at 10:02:52AM -0700
List-archive: <http://www.imc.org/ietf-open-pgp/mail-archive/>
List-unsubscribe: <mailto:ietf-open-pgp-request@imc.org?body=unsubscribe>
Mail-followup-to: ietf-open-pgp@xxxxxxx
References: <199904091702.KAA02554@xxxxxxxxxxxxxxx>
Sender: owner-ietf-open-pgp@xxxxxxx

hal@xxxxxxxx writes:

> I believe Uri was referring to the passphrase-protected secret key
> data, which does use an IV in the conventional sense.

Hmmm, from the pgp 2.6.3 documentation about secret key certificates:

|  and the checksum is used to tell if the password was good.  The CFB
|  IV field is just encrypted random data, assuming the "true" IV was
|  zero.

This is what is done in GnuPG too and I have checked interoperability
against pgp 5.0beta.

> the rest of the packet anyway, so there is no need to parse it.  You do
> have information about the overall packet size from the packet headers,
> so you can just skip past the encrypted data.

Sure, it adds extra complexity to the already complex issue with 
S2K and pgp2 mode - but no problem ;-)

> approach for this problem.  I will post a summary later this morning.

This means late evening in Europe :-(

-- 
Werner Koch at guug.de           www.gnupg.org           keyid 621CC013

References:
- Re: Sample Twofish message
  - From: hal

Prev by Date: Re: Sample Twofish message
Next by Date: Re: Sample Twofish message
Previous by thread: Re: Sample Twofish message
Next by thread: Re: Sample Twofish message
Index(es):
- Date
- Thread