Re: On IVs
- From: daw@xxxxxxxxxxxxxxxxxxxxxxxx (David Wagner)
- Date: Mon, 2 Jan 2006 02:33:57 +0000 (UTC)
Ivan Voras wrote:
>My question is: are those pieces of data interchangable, in the sense
>that using a secret key and well-known (e.g. constant, predefined,
>transmitted) IV is as secure as using a well-known key and secret IV (on
>both sides)? In other words, if the key and IV are swapped in usage.
Nope, they're not the same. The latter (using a well-known key)
is 100% insecure.
By the way, most modes of operation require IVs to be random and
non-repeating, not constant and predefined.
I wouldn't suggest making up variations on the standard modes.
Just do what the standard says (unless you know enough cryptography
to safely deviate from the standard -- which most people don't).
.
- Follow-Ups:
- Re: On IVs
- From: Ivan Voras
- Re: On IVs
- References:
- On IVs
- From: Ivan Voras
- On IVs
- Prev by Date: Re: OT: Why include this in your reply?
- Next by Date: Re: DES doubts. why we use 56 bit key when ony 48 bits are used?
- Previous by thread: Re: On IVs
- Next by thread: Re: On IVs
- Index(es):
