[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IV sizes for AES candidates


16 bytes for 128bit ciphertext blocksize, right? It should be 24 and 32 for 192bit and 256bit, correct? Or is it always 16 (which I don't believe is correct)?

At 03:06 PM 8/7/2000 -0400, Steven M. Bellovin wrote:
>In message <20000807185658.4465.qmail@pb151.postoffice.net>, jeff@allegrosys.co
>m writes:
>>Is anyone working on drafts for ESP using the AES candidates?
>>Is there a consensus that the IV part of the payload should
>>be a number of 32bit words?
>The IV should be the same size as the ciphertext blocksize, which for
>AES is 16 bytes.  (One could make some argument that one could stick
>with 8 bytes, and somehow expand it.  That would make me nervous
>without some good analysis.)
>               --Steve Bellovin

"At the end of the day... the most committed win!"

James M. Polk
Sr. Product Manager, Multiservice Architecture and Standards
Enterprise Voice Business Unit
Cisco Systems
Dallas, Texas
w) 972.813.5208
f)  972.813.5280