[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IV sizes for AES candidates

To: "Steven M. Bellovin" <smb@research.att.com>, jeff@allegrosys.com
Subject: Re: IV sizes for AES candidates
From: "James M. Polk" <jmpolk@cisco.com>
Date: Mon, 07 Aug 2000 16:03:05 -0500
Cc: ipsec@lists.tislabs.com
In-Reply-To: <20000807190608.4A67835DC2@smb.research.att.com>
Sender: owner-ipsec@lists.tislabs.com

Steve

16 bytes for 128bit ciphertext blocksize, right? It should be 24 and 32 for 192bit and 256bit, correct? Or is it always 16 (which I don't believe is correct)?

At 03:06 PM 8/7/2000 -0400, Steven M. Bellovin wrote:

>In message <20000807185658.4465.qmail@pb151.postoffice.net>, jeff@allegrosys.co

>m writes:

>>Is anyone working on drafts for ESP using the AES candidates?

>>Is there a consensus that the IV part of the payload should

>>be a number of 32bit words?

>The IV should be the same size as the ciphertext blocksize, which for

>AES is 16 bytes. (One could make some argument that one could stick

>with 8 bytes, and somehow expand it. That would make me nervous

>without some good analysis.)

> --Steve Bellovin

*************************************
"At the end of the day... the most committed win!"

James M. Polk
Sr. Product Manager, Multiservice Architecture and Standards
Enterprise Voice Business Unit
Cisco Systems
Dallas, Texas
w) 972.813.5208
f) 972.813.5280
www.cisco.com

References:

Re: IV sizes for AES candidates

From: "Steven M. Bellovin" <smb@research.att.com>

Prev by Date: Re: IV sizes for AES candidates
Next by Date: Re: IV sizes for AES candidates
Prev by thread: Re: IV sizes for AES candidates
Next by thread: Re: IV sizes for AES candidates
Index(es):
- Main
- Thread