[Cryptography] Key meshing (Re: [Crypto-practicum] Retire all 64-bit block ciphers.)

Phillip Hallam-Baker phill at hallambaker.com
Thu Sep 1 13:55:45 EDT 2016


On Thu, Sep 1, 2016 at 9:40 AM, <crypto.jmk at gmail.com> wrote:

> The idea of altering the key as part of the chaining mode is more-or-less
> what a tweakable block cipher buys you--there is effectively a part of the
> key that is assumed to be known or chosen by the attacker, and that is
> designed to be changed quickly at minimal cost.
>
> --John


​Great point there. If we designed the cipher with two key inputs, ​we
could create better chaining modes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20160901/719f457d/attachment.html>


More information about the cryptography mailing list