[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Hello?

To: rgm3@is.chrysler.com (Robert Moskowitz)
Subject: Re: Hello?
From: "Perry E. Metzger" <perry@imsi.com>
Date: Thu, 09 Feb 1995 11:10:50 -0500
Cc: ipsec@ans.net
In-Reply-To: Your message of "Thu, 09 Feb 1995 06:34:37 CST." <9502091149.AB06576@clncrdv1.is.chrysler.com>
Reply-To: perry@imsi.com


Robert Moskowitz says:
> Is the list totally quite or did the list operator drop my subscription in a
> bit bucket somewhere.

The list is not quiet so it is unlikely that you were subscribed.

> I have some questions on the IPSP drafts and would like to understand the
> difference between DES and DES-CBC, ie do they require different hardware
> engines?

Block ciphers can be used in various different modes to assure
security. When a block cipher is simply used to encode each block in
turn, it is being used in ECB, or Electronic Code Book, mode. This
mode is dangerous because the same plaintext will always encrypt as
the same cyphertext, thus giving information to the attacker about the
underlying plaintext. CBC is the Cipher Block Chaining mode -- in it,
the ciphertext of each block is XORed with the plaintext of the next
block before encryption. There are other modes -- Cipher Feedback
Mode, Output Feedback Mode, etc.

Any hardware that supports DES should probably handle DES in CBC mode.

Perry

References:

Hello?

From: rgm3@is.chrysler.com (Robert Moskowitz)

Prev by Date: Hello?
Next by Date: Re: comments on Photuris
Prev by thread: Hello?
Next by thread: Re: Hello?
Index(es):
- Main
- Thread