RE: Encrypting the IV - again. Was: Re: nonce length

To put Blair's point more concisely, Encryption protects confidentiality,
any attempt to use encryption alone to protect integrity is doomed to
failure. The same attacks can be performed through manipulation of the
cipher stream.

		Phill

Phillip Hallam-Baker FBCS C.Eng.
Principal Scientist
VeriSign Inc.
pbaker@verisign.com
781 245 6996 x227

Received on Monday, 4 February 2002 10:43:46 UTC