RE: Encryption padding

>-----Original Message-----
>From: []
>Most encryption algorithms roughly preserve the length of the plaintext.
>They may pad it up to be a multiple of the the block size, usually 8 or
>16 bytes.  Therefore the length of the plaintext can be inferred from
>the length of the ciphertext, to within 8-16 bytes.
>This would be especially dangerous if you were encrypting enumerated
>attributes.  If they happened to have very different lengths then the
>leakage based on plaintext length could completely defeat the encryption.


I am not sure I understand what you mean by "enumerated attributes".
Could you elaborate or give an example.

Steve Wiley <>

Received on Wednesday, 15 November 2000 13:16:17 UTC