Re: Designing a secure message format
- From: rossum <rossum48@xxxxxxxxxxxx>
- Date: Fri, 30 Jun 2006 12:44:16 +0100
On 29 Jun 2006 20:57:24 -0700, "imposterrific@xxxxxxxxx"
<imposterrific@xxxxxxxxx> wrote:
The passphrase would be used to generate a pseudo-random data streamRC4 is very easy to program, but no longer secure. MARC4 is better,
(S1) which would be used to decrypt a message header, which contains
additional information needed to decrypt the body of the message. (I
plan on using RC4 for S1 and including an initialization vector in the
message.) I have had a few ideas about what to put in this header.
Perhaps it could contain several symmetric keys which were used to
encrypt the message body (3DES, AES, etc.) or maybe it could contain
initialization vectors for a series of pseudo random streams spawned
from the original data stream (S1).
but still iffy. Given that you will have 3DES and/or AES available,
why not use AES in CTR mode to produce the pseudo random stream S1?
rossum
.
- Follow-Ups:
- Re: Designing a secure message format
- From: imposterrific@xxxxxxxxx
- Re: Designing a secure message format
- References:
- Designing a secure message format
- From: imposterrific@xxxxxxxxx
- Designing a secure message format
- Prev by Date: Re: (OT?) File Deltas
- Next by Date: AES design - can you help me to understand
- Previous by thread: Re: Designing a secure message format
- Next by thread: Re: Designing a secure message format
- Index(es):
Relevant Pages
|
|
