Re: (Fwd) Authentication and encryption.

[uri@watson.ibm.com]

James P. Hughes says:
> The CRC under the encryption is not a "normal" integrity check. "Normal"
> integrity checks are over the entire encrypted packet and protect the
> data from random noise. i.e. CRC32 on Ethernet.

Again, I don't want to spend too much time/efforts on exploring this.
My "feeling" is - that without ASSumptions about method and mode of
encryption one can't reliably ASSume anything about integrity
checks done even on cleartext prior to encryption, because
there can be ways to modify the data without it being
detected by that integrity check (and without
disturbing the encryption, of course :-).

> Is it your assertion that "that the attacker must know the key" to reliabily
> change the data can not be proven?

I'm not sure I understand what you mean - but I'll answer anyway (:-).
Not only it can't be proven, but I think it's outright wrong in
general.  There are integrity checks that are expensive and
secure, and there are ones that are cheap and "breakable".
Some encryption modes/methods can vouch for data integrity (to some
extent - I don't want to dive into this now) and some can NOT...
--
Regards,
Uri         uri@watson.ibm.com      acheron!angmar!uri 	N2RIU
-----------
<Disclamer>

---

Follow-Ups:

• Re: (Fwd) Authentication and encryption.
• From: hughes@hughes.network.com (James P. Hughes)

References:

• Re: (Fwd) Authentication and encryption.
• From: hughes@hughes.network.com (James P. Hughes)

---

• Prev by Date: Re: (Fwd) Authentication and encryption.
• Next by Date: Re: IPSEC requirements
• Prev by thread: Re: (Fwd) Authentication and encryption.
• Next by thread: Re: (Fwd) Authentication and encryption.
• Index(es):
  • Main
  • Thread