[14784] in cryptography@c2.net mail archive
Re: Are there...
daemon@ATHENA.MIT.EDU (Ed Gerck)
Wed Nov 19 16:12:50 2003
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Mon, 17 Nov 2003 15:18:23 -0800
From: Ed Gerck <egerck@nma.com>
To: "Lawrence C. Stewart" <stewart@qadgop.stewart.org>
Cc: Enzo Michelangeli <em@em.no-ip.com>, cryptography@metzdowd.com,
stewart@serissa.com
"Lawrence C. Stewart" wrote:
> ...
> encryption key should be generated independently for each encryption
> and packaged along with the ciphertext. That solves the salt problem
> and the cracking the system problem in one step.
I am sorry to differ, but packaging the encryption-key along with
the ciphertext (even if part of the plaintext) will create additional
dependencies and reduce the search space of possible results. In
short, one should avoid sending any additional information about
the encryption key.
Cheers,
Ed Gerck
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
