Re: Hash of item as IV for CBC mode?
- From: Andrew Swallow <am.swallow@xxxxxxxxxxxxxx>
- Date: Mon, 14 Apr 2008 20:03:15 +0100
David Wagner wrote:
Tim Smith wrote:{snip}Are there any known problems with using a hash of an item as the IV for encrypting that item using a block cipher in CBC mode?
Yes, it violates semantic security: if I encrypt the same item twice, then
that will be visible from their ciphertexts. If the space of possible
items is not too large, then this is basically a simple substitution
cipher on items.
Appending the time and date of the encryption to the start (or end) of
the message will produce a different hash value each time the message is
sent.
Andrew Swallow
.
- Follow-Ups:
- Re: Hash of item as IV for CBC mode?
- From: John E. Hadstate
- Re: Hash of item as IV for CBC mode?
- From: John E. Hadstate
- Re: Hash of item as IV for CBC mode?
- From: John E. Hadstate
- Re: Hash of item as IV for CBC mode?
- References:
- Hash of item as IV for CBC mode?
- From: Tim Smith
- Re: Hash of item as IV for CBC mode?
- From: David Wagner
- Hash of item as IV for CBC mode?
- Prev by Date: Re: Hash of item as IV for CBC mode?
- Next by Date: Re: Hash of item as IV for CBC mode?
- Previous by thread: Re: Hash of item as IV for CBC mode?
- Next by thread: Re: Hash of item as IV for CBC mode?
- Index(es):
Relevant Pages
|
|
