[Cryptography] Compression before encryption?

Christoph Anton Mitterer calestyo at scientia.net
Fri Jan 9 13:51:15 EST 2015


On Fri, 2015-01-09 at 13:22 +0100, Stephan Neuhaus wrote: 
> I have come across the recommendation to "compress before you encrypt", 
> on the grounds that this makes plaintext recognition through frequency 
> analysis much harder.
Compression before encryption may be used as an oracle when plain text
injection is possible...
See CRIME/BREACH attacks and the principle behind them.


Cheers,
Chris.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5313 bytes
Desc: not available
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20150109/d57a1e3a/attachment.bin>


More information about the cryptography mailing list