[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Java crypto Cipher-Block-Chaining isn't chaining

To: RL@incaa.nl
Subject: Re: Java crypto Cipher-Block-Chaining isn't chaining
From: Stephen Kent <kent@bbn.com>
Date: Mon, 3 May 1999 15:00:18 -0400
Cc: ipsec@lists.tislabs.com
In-Reply-To: <37275ab5.uincaa@incaa.nl>
Sender: owner-ipsec@lists.tislabs.com

Robert,

CBC mode, as defined in FIPS 81 does not need to "chain" from one packet to
the next, only from one 8-byte block to the next, e.g., within a packet.
In fact, strict adherence to the FIPS does not even require a new IV for
each packet. While 2405 notes the possibility of chaining from one packet
to the next, it does not require such (no use of SHOULD, MUST, or even
MAY). Thus the Java implementation you cite appears to comply with both
2405 and the FIPS.

Steve

Follow-Ups:

Re: Java crypto Cipher-Block-Chaining isn't chaining

From: "Theodore Y. Ts'o" <tytso@MIT.EDU>

Next by Date: RE: INITIAL-CONTACT issues
Next by thread: Re: Java crypto Cipher-Block-Chaining isn't chaining
Index(es):
- Main
- Thread