[85731] in cryptography@c2.net mail archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

More info in my AES128-CBC question

daemon@ATHENA.MIT.EDU (Aram Perez)
Fri Apr 20 11:39:09 2007

Date: Thu, 19 Apr 2007 22:32:58 -0700
From: Aram Perez <aramperez@mac.com>
To: Cryptography <cryptography@metzdowd.com>

Hi Folks,

First, thanks for all your answers.

The proposal for using AES128-CBC with a fixed IV of all zeros is for a protocol between two entities that will be exchanging messages. This is being done in a "standards" body (OMA) and many of the attendees have very little security experience. As I mentioned, the response to my question of why would we standardize this was "that's how SD cards do it".

I'll look at the references and hopefully convince enough people that it's a bad idea.

Thanks again,
Aram Perez

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[85731] in cryptography@c2.net mail archive

More info in my AES128-CBC question

daemon@ATHENA.MIT.EDU (Aram Perez)Fri Apr 20 11:39:09 2007

daemon@ATHENA.MIT.EDU (Aram Perez)
Fri Apr 20 11:39:09 2007