W3C home > Mailing lists > Public > public-webcrypto@w3.org > September 2012

Re: Support for ECB

From: Ryan Sleevi <sleevi@google.com>
Date: Thu, 13 Sep 2012 16:02:42 -0700
Message-ID: <CACvaWvbuKXFSEJTc_tEA5z+BTfQYziJN5h6rUY6xg6h-ZqigbQ@mail.gmail.com>
To: Anthony Nadalin <tonynad@microsoft.com>
Cc: Emily Stark <estark@mit.edu>, Zooko Wilcox-OHearn <zooko@leastauthority.com>, "public-webcrypto@w3.org" <public-webcrypto@w3.org>
And on the "more likely to need a polyfill function" side, what about
Poly1305-AES as a MAC?

On Thu, Sep 13, 2012 at 2:29 PM, Anthony Nadalin <tonynad@microsoft.com> wrote:
> There are many uses here in Microsoft products and services using ECB for
> key wrapping
>
>
>
> From: Emily Stark [mailto:estark@MIT.EDU]
> Sent: Thursday, September 13, 2012 2:24 PM
> To: Zooko Wilcox-OHearn
> Cc: public-webcrypto@w3.org
>
>
> Subject: Re: Support for ECB
>
>
>
> What about Vijay's BitLocker example, where ECB is used to derive IVs that
> get passed into CBC? (Or did you mean other examples besides Bitlocker?)
>
>
>
> On Thu, Sep 13, 2012 at 4:56 PM, Zooko Wilcox-OHearn
> <zooko@leastauthority.com> wrote:
>
> On Thu, Sep 13, 2012 at 11:27 AM, Anthony Nadalin <tonynad@microsoft.com>
> wrote:
>> There are existing usages of ECB, why would we force a change here?
>
> I am aware of many existing (or at least recent-past) uses of ECB that
> were insecure. I'm not aware of any other uses of ECB -- ones that are
> still current and that are not dangerously insecure. Does someone have
> some examples of where ECB mode is used today?
>
>
> Regards,
>
> Zooko Wilcox-O'Hearn
>
> Founder, CEO, and Customer Support Rep -- Least Authority Enterprises
>
> https://leastauthority.com
>
>
Received on Thursday, 13 September 2012 23:03:10 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Thursday, 13 September 2012 23:03:12 GMT