Re: Triple DES

Carl,

        I'm confused by your set of "two more questions."  I assumed
that Mark was proposing use of DES as a three pass code book (e.g., in
EDE or EEE).  This use would still encrypt a single, 8-byte block of
user data or generate a single, 8-byte block of key stream for each
invocation of the underlying code book.  So, if one were using this as
the code book for CBC, I would expect there to be exactly one feedback
stream generated by the (now 3-pass) codebook.  Similarly, I would
expect there to be exactly one, 8-byte IV to "prime" this mode.
Finally,I have not seen a message clearly defining what added security
accrues from encrypting the IV, assuming that good IV generation
procedures are employed.  We know that encryption of the IV is
important in an application with no anciliary integrity mechansims,
but this is not the case for PEM.

Steve

<Prev in Thread]	Current Thread	[Next in Thread>
Triple DES, Mark Riordan Re: Triple DES, Carl Ellison Re: Triple DES, Steve Kent <= Re: Triple DES, Carl Ellison Re: Triple DES, Steve Kent Re: Triple DES, Raymond Lau Re: Triple DES, Carl Ellison Re: Triple DES, agent: David Balenson Re: Triple DES, Mark Riordan Re: Triple DES, Amanda Walker Re: Triple DES, Charles Kaufman dss Re: Triple DES, Carl Ellison Re: Triple DES, Steve Kent

Previous by Date:	Re: TIS/PEM will probably have exprimental support for EDE, Carl Ellison
Next by Date:	Re: DES EDE vs. EEE, Steve Kent
Previous by Thread:	Re: Triple DES, Carl Ellison
Next by Thread:	Re: Triple DES, Carl Ellison
Indexes:	[Date] [Thread] [Top] [All Lists]