Re: Newbie question about AES encryption
- From: Kristian Gjøsteen <kristiag+news@xxxxxxxxxxxx>
- Date: Tue, 31 Oct 2006 11:58:20 +0000 (UTC)
Peter van Liesdonk <peter@xxxxxxxxxxx> wrote:
As already mentioned, the correct way to find out about it is to
include a MAC.
.... in a careful way.
Either send the MAC of the original message as a
separate block with the cipher text,
No, no, no, no, no, no, no. For many (maybe even most) MACs, this is
insecure. The MAC tag leaks information about which message is sent.
or concatenate it to the plain
text before encryption.
This can supposedly fail in subtle ways.
The canonical way to use a cipher together with a MAC is to encrypt,
then run the ciphertext through the MAC function.
The even better way is to use an encryption mode with confidentiality
_and_ integrity.
--
Kristian Gjøsteen
.
- Follow-Ups:
- Re: Newbie question about AES encryption
- From: Tom St Denis
- Re: Newbie question about AES encryption
- References:
- Newbie question about AES encryption
- From: Mark
- Re: Newbie question about AES encryption
- From: TC
- Re: Newbie question about AES encryption
- From: Peter van Liesdonk
- Newbie question about AES encryption
- Prev by Date: Re: Another Dumb Idea for Debunking...
- Next by Date: Re: Another Dumb Idea for Debunking...
- Previous by thread: Re: Newbie question about AES encryption
- Next by thread: Re: Newbie question about AES encryption
- Index(es):
Relevant Pages
|
|
