[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: CBC makes Implementations too Slow.

To: ipsec@lists.tislabs.com
Subject: Re: CBC makes Implementations too Slow.
From: Michael Cyr <mikecyr@austin.ibm.com>
Date: Wed, 28 Nov 2001 18:03:35 -0600 (CST)
In-Reply-To: <p05010407b82b259dfd95@[128.89.88.34]>
Sender: owner-ipsec@lists.tislabs.com

On Wed, 28 Nov 2001, Stephen Kent wrote:

> It's OK to generate a new random or pseudo-random IV for each packet. 
> The suggestion of using a residual ciphertext from a previously 
> encrypted packet should not be taken as a requirement, and might even 
> be viewed as less than ideal from a strict crypto protocol 
> perspective. If you use a separate IV for each block, that would be a 
> different mode entirely, and, unless the IV sequence is 
> deterministic, the overhead would be unacceptable.  I suggest you 
> stick to standard modes.

This is exactly what I need, thank you.  My problem was that I was
confusing block vs. packet.  What I really wanted to know was whether it
was required that the IV data that was specified in the packet header
(and used for the first block in the packet) come from the ciphertext of
the previous packet.  I understand now that it is not.

----------------------------------------------------------------------
Michael Cyr      | Phone 512-838-2943 |mikecyr@austin.ibm.com .. Email
AIX IP Security  | Tie-Line  678-2943 |
Austin, TX       | FAX   512-838-3509 |-------------------------------

References:

Re: CBC makes Implementations too Slow.

From: Stephen Kent <kent@bbn.com>

Prev by Date: Re: CBC makes Implementations too Slow.
Next by Date: Re: [saag] RE: IP Storage and IPsec encapsulation
Next by thread: Re: Status of ID: IPsec Flow Monitoring MIB
Index(es):
- Main
- Thread