[Cryptography] CFB/OFB/CTR mode with HMAC for key stream
Bill Frantz
frantz at pwpconsult.com
Tue May 16 01:49:22 EDT 2017
On 5/15/17 at 3:22 PM, bear at sonic.net (Ray Dillinger) wrote:
> On 05/01/2017 08:29 AM, Bill Frantz wrote:
>
> > Exactly this idea was suggested by at least one well-known
> > cryptographer* during the 1990s crypto wars as a thought experiment to
> > show that even if encryption algorithms were controlled, MACs could be
> > substituted.
>
> You may be thinking of the "Chaffing and Winnowing" paper by Ron
> Rivest, from 1998. If someone wants to implement confidentiality
> as well as authenticity using a MAC, it's probably the best-known
> scheme.
>
> It even has its own Wikipedia article.
Bingo! Thanks for the trip down memory lane.
Cheers - Bill
-----------------------------------------------------------------------
Bill Frantz | Can't fix stupid, but duct | Periwinkle
(408)356-8506 | tape can muffle the sound... | 16345 Englewood Ave
www.pwpconsult.com | - Bill Liebman | Los Gatos, CA 95032
More information about the cryptography
mailing list