[85639] in cryptography@c2.net mail archive
Re: AES128-CBC Question
daemon@ATHENA.MIT.EDU (Sidney Markowitz)
Thu Apr 19 17:41:18 2007
Date: Fri, 20 Apr 2007 08:56:32 +1200
From: Sidney Markowitz <sidney@sidney.com>
To: Aram Perez <aramperez@mac.com>
CC: Cryptography <cryptography@metzdowd.com>
In-Reply-To: <A8F835E9-0111-1000-EF54-E3BE510C6815-Webmail-10009@mac.com>
Aram Perez wrote, On 19/4/07 6:29 PM:
> Is there any danger in using AES128-CBC with a fixed IV of all zeros?
Here is some discussion about doing this, in the context of PGP doing
just that and why PGP inserts random characters at the begining of the
plaintext.
http://archive.cert.uni-stuttgart.de/openpgp/2003/04/msg00026.html
It points out that a fixed IV results in information leakage if the
first block or more of plaintext is the same in two messages encrypted
with the same key.
Sidney Markowitz
http://www.sidney.com
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
