[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Calling the question: derived vs. explicit IV
Add me to the list in favor of explicit IV.
Dan.
> Derived:
> 1) Me
> 2) "C. Harald Koch" <chk@utcc.utoronto.ca>
> 3) "ozan s. yigit" <oz@tor.securecomputing.com>
> 4) Norman Shulman <norm@tor.securecomputing.com>
> 5) "Angelos D. Keromytis" <angelos@dsl.cis.upenn.edu>
> 6) Karl Fox <karl@Ascend.COM>
>
> Explicit:
> 1) Roy Pereira <rpereira@TimeStep.com>
> 2) Rodney Thayer <rodney@sabletech.com>
> 3) "Theodore Y. Ts'o" <tytso@MIT.EDU>
> 4) Derrell Piper <piper@cisco.com>
>
> Fence-sitting:
> 1) mark@mentat.com (Marc Hasson)
> Fine, I really don't care which it is.
>
> 2) Steven Bellovin <smb@research.att.com>
> In other words, I don't care very much about explicit vs. implicit IVs
> for DES. I don't think it makes any difference at all. It may matter
> for other ciphers.
>
> 3) Stephen Kent <kent@bbn.com>
> ... The WG must decide on a
> default, MUST implement encryption algorithm and mode and that decision
> will weight space efficiency, confidentiality effectiveness, rekey
> frequency, and existing implementations in some fashion. This is a fairly
> complex set of factors to consider, so I don't assume it will be an easily
> objectifiable (did I really type that word?) decision.
References: