AES128-CBC Question

Nicolas Williams Nicolas.Williams at sun.com
Thu Apr 19 17:51:50 EDT 2007


On Fri, Apr 20, 2007 at 08:56:32AM +1200, Sidney Markowitz wrote:
> Aram Perez wrote, On 19/4/07 6:29 PM:
> > Is there any danger in using AES128-CBC with a fixed IV of all zeros?
> 
> Here is some discussion about doing this, in the context of PGP doing
> just that and why PGP inserts random characters at the begining of the
> plaintext.

Kerberos V calls this a "confounder" (a block of randomly selected bits
that is prepended to plaintext prior to encryption).

Nico
-- 

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com



More information about the cryptography mailing list