Re: Message Integrity

ietf-openpgp

Re: Message Integrity

1999-04-22 09:49:56

uri <uri(_at_)watson(_dot_)ibm(_dot_)com> writes:

Werner Koch says:

However, to come to a solution we should use the
        IV|checkbytes|plaintext|SHA1
proposal and assign a new packet type to it (and add a version number
just in case we want to change it again).


If the above is the *plaintext* - I agree.  I personally like


Sure.

implicit IV=0x00...0 and the plaintext prepended with random
128 bits.


So do I,  s/IV/random_bytes/

NO! With 128-bit cipher you MUST use 128-bit IV. [I understand it's


So we have to fix it in the RFC (I already implemented it this way).


-- 
Werner Koch at guug.de           www.gnupg.org           keyid 621CC013

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Message Integrity, (continued) Re: Message Integrity, tzeruch Re: Message Integrity, Werner Koch Re: Message Integrity, Jon Callas Re: Message Integrity, Werner Koch Re: Message Integrity, Tom Zerucha Re: Message Integrity, Tom Zerucha Re: Message Integrity, Adam Back Re: Message Integrity, tzeruch Re: Message Integrity, Werner Koch Re: Message Integrity, uri Re: Message Integrity, Werner Koch <= Re: Message Integrity, Jon Callas consensus was not against verification packets (Re: Message Integrity), Adam Back Re: consensus was not against verification packets (Re: Message Integrity), uri Re: consensus was not against verification packets (Re: Message Integrity), Jon Callas Re: consensus was not against verification packets (Re: Message Integrity), Adam Back Re: Message Integrity, Anonymous Re: Message Integrity, hal Re: Message Integrity, Jon Callas Re: Message Integrity, hal Re: Message Integrity, hal

Previous by Date:	Re: Message Integrity, hal
Next by Date:	Re: Phil Zimmermann's suggestion - Implementation?, tzeruch
Previous by Thread:	Re: Message Integrity, uri
Next by Thread:	Re: Message Integrity, Jon Callas
Indexes:	[Date] [Thread] [Top] [All Lists]