- From: Steve Wiley <steve@myProof.com>
- Date: Wed, 15 Nov 2000 10:16:53 -0800
- To: "'hal@finney.org'" <hal@finney.org>, xml-encryption@w3.org
> >-----Original Message----- >From: hal@finney.org [mailto:hal@finney.org] >Most encryption algorithms roughly preserve the length of the plaintext. >They may pad it up to be a multiple of the the block size, usually 8 or >16 bytes. Therefore the length of the plaintext can be inferred from >the length of the ciphertext, to within 8-16 bytes. > >This would be especially dangerous if you were encrypting enumerated >attributes. If they happened to have very different lengths then the >leakage based on plaintext length could completely defeat the encryption. Hal, I am not sure I understand what you mean by "enumerated attributes". Could you elaborate or give an example. Thanks, Steve Wiley <steve@myproof.com>
Received on Wednesday, 15 November 2000 13:16:17 UTC