OK, the solution with the Nonce is good and works. I forgot that possibilty. Thanks, Christian --On Montag, 12. November 2001 08:47 -0800 Blair Dillaway <blaird@microsoft.com> wrote: > I agree with Don on this. Lets not start adding in IV encryption modes. > I disagree with the assertion doing this is a trivial change. It will > end up creating quite a bit more work for implementors and interop > testing. > > The issue Christian describes below is already dealt with through the > use of the optional NONCE value. By placing a NONCE of length larger > than the alg block size, manipulating the IV can only cause the NONCE to > decrypt incorrectly. It will not allow one to manipulate the decrypted > value of the original plain-text. > > BlairReceived on Monday, 12 November 2001 12:15:35 GMT
This archive was generated by hypermail 2.2.0+W3C-0.50 : Sunday, 27 May 2007 00:08:59 GMT