[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ESP with stream ciphers

To: norm@border.com (Norman Shulman)
Subject: Re: ESP with stream ciphers
From: Uri Blumenthal <uri@watson.ibm.com>
Date: Tue, 15 Apr 1997 11:32:48 -0400 (EDT)
Cc: rodney@sabletech.com, ipsec@tis.com
In-Reply-To: <97Apr15.105340edt.11653@janus.border.com> from "Norman Shulman" at Apr 15, 97 10:57:20 am
Reply-To: uri@watson.ibm.com
Sender: owner-ipsec@ex.tis.com

Norman Shulman says:
> On Tue, 15 Apr 1997, Rodney Thayer wrote:
> > We need 8 byte IV's for DES and 3DES, right?  Not 24 bytes for 3DES?
> 
> DES requires a 64 bit IV, but for ESP a 32 bit folded IV is often transmitted.
> Early 3DES drafts require a 64 bit IV (outer, not inner).

3DES is secure only if used as a black-box engine (see Biham's paper). 
That means - no inner feedbacks. That in turn means - only one IV for 
the first DES is needed.  It has to be 64 bits,  and it can be folded
for transmission to 32 bits, just like the good ESP draft says.
-- 
Regards,
Uri		uri@watson.ibm.com
-=-=-=-=-=-=-
<Disclaimer>

References:

Re: ESP with stream ciphers

From: Norman Shulman <norm@border.com>

Prev by Date: Re: A pothole in ISAKMP/Oakley
Next by Date: Re: A pothole in ISAKMP/Oakley
Prev by thread: Re: ESP with stream ciphers
Next by thread: Re: ESP with stream ciphers
Index(es):
- Main
- Thread