AES128-CBC Question

Victor Duchovni Victor.Duchovni at MorganStanley.com
Thu Apr 19 16:30:46 EDT 2007


On Wed, Apr 18, 2007 at 11:29:45PM -0700, Aram Perez wrote:

> Is there any danger in using AES128-CBC with a fixed IV of all zeros? This is being proposed for a standard "because that's how SD cards implemented it".
> 

Is the same key ever used to encrypt multiple streams?

This is a protocol question, not an algorithm question, so you need a
security review of the protocol (which you have not described).

-- 

 /"\ ASCII RIBBON                  NOTICE: If received in error,
 \ / CAMPAIGN     Victor Duchovni  please destroy and notify
  X AGAINST       IT Security,     sender. Sender does not waive
 / \ HTML MAIL    Morgan Stanley   confidentiality or privilege,
                                   and use is prohibited.

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com



More information about the cryptography mailing list