[Cryptography] Dan Bernstein has a new blog entry on key breaking
Sandy Harris
sandyinchina at gmail.com
Tue Nov 24 14:07:05 EST 2015
On Mon, Nov 23, 2015 at 11:36 PM, Dave Horsfall <dave at horsfall.org> wrote:
> On Mon, 23 Nov 2015, Viktor Dukhovni wrote:
>
>> The other key can simply be the same for every block, no need for RC4:
>>
>> K_1 xor AES(K_2, data) xor K_1
>
> Err, unless I've missed something, isn't this just the AES() bit? Those
> two XORs would cancel out...
It should be AES( key, (data XOR mask)) XOR mask
More information about the cryptography
mailing list