Re: Can someone please poke some holes in this idea?

bram (bram@gawth.com)
Wed, 7 Oct 1998 12:04:42 -0700 (PDT)

• Next message: Werner Koch: "Re: Can someone please poke some holes in this idea?"
• Previous message: SDN: "Re: Can someone please poke some holes in this idea?"
• In reply to: David R. Conrad: "Re: Can someone please poke some holes in this idea?"
• Next in thread: Giff: "Re: Can someone please poke some holes in this idea?"
• Reply: Giff: "Re: Can someone please poke some holes in this idea?"

On Wed, 7 Oct 1998, Frank (Giff) Gifford wrote:

> Your question seems to be more about detecting whether or not a decryption
> will be correct. One possibility which comes to mind is to append two
> blocks to the beginning of the file. Let's assume 64 bit blocks. The
> first is composed of randomly generated data [as random as you like]. The
> second block is a pattern of WXYZWXYZ, where WXYZ is a random four byte
> value. Encrypt everything in CBC mode.

That might make it possible for a malicious attacker to garble the rest of
the file without it being immediately detected. It is slightly better to
put the verification at the end of the file or make the verification be
the hash of the file.

-Bram

• Next message: Werner Koch: "Re: Can someone please poke some holes in this idea?"
• Previous message: SDN: "Re: Can someone please poke some holes in this idea?"
• In reply to: David R. Conrad: "Re: Can someone please poke some holes in this idea?"
• Next in thread: Giff: "Re: Can someone please poke some holes in this idea?"
• Reply: Giff: "Re: Can someone please poke some holes in this idea?"