[Authentication] Fwd: Re: Session negotiation
Josef Kufner
jk at myserver.cz
Thu Jul 16 03:36:57 PDT 2009
Brad Hards píše v Čt 16. 07. 2009 v 20:18 +1000:
> On Thursday 16 July 2009 18:45:16 Michael Leupold wrote:
> > I wasn't talking about reuse, I was more or less considering the secrets to
> > be passed through a stream cipher that whose state was established on
> > session start. After trying I figured it's not the right approach though as
> > while the same secret encrypted over and over produces different encrypted
> > results they have to be manually padded/unpadded as apparently crypto
> > libraries only support padding on the last block encrypted (at least libqca
> > does).
> I'm confused as to what you're trying to do. Maybe you can explain again?
> If you pass the same inputs into a cipher, then you'll (obviously) get the
> same output.
You will not get same output while using stream cipher, because stream
cipher uses previous data AND key for encrypting current data. So you
have to fully reinitialize cipher before each encryption. Therefore is
stream cipher useless.
Josef Kufner.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: Toto je =?UTF-8?Q?digit=C3=A1ln=C4=9B?=
=?ISO-8859-1?Q?_podepsan=E1?= =?UTF-8?Q?_=C4=8D=C3=A1st?=
=?ISO-8859-1?Q?_zpr=E1vy?=
Url : http://lists.freedesktop.org/archives/authentication/attachments/20090716/dc7d919c/attachment.pgp
More information about the Authentication
mailing list