Re: [Cfrg] draft-housley-ccm-mode-00.txt

Greg Rose <ggr@qualcomm.com> Thu, 15 August 2002 20:28 UTC

Received: from optimus.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA14973 for <cfrg-archive@odin.ietf.org>; Thu, 15 Aug 2002 16:28:09 -0400 (EDT)
Received: (from daemon@localhost) by optimus.ietf.org (8.9.1a/8.9.1) id QAA03877 for cfrg-archive@odin.ietf.org; Thu, 15 Aug 2002 16:29:29 -0400 (EDT)
Received: from optimus.ietf.org (localhost [127.0.0.1]) by optimus.ietf.org (8.9.1a/8.9.1) with ESMTP id QAA03854; Thu, 15 Aug 2002 16:28:41 -0400 (EDT)
Received: from ietf.org (odin [132.151.1.176]) by optimus.ietf.org (8.9.1a/8.9.1) with ESMTP id QAA03825 for <cfrg@optimus.ietf.org>; Thu, 15 Aug 2002 16:28:40 -0400 (EDT)
Received: from ithilien.qualcomm.com (ithilien.qualcomm.com [129.46.51.59]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA14957 for <cfrg@ietf.org>; Thu, 15 Aug 2002 16:27:18 -0400 (EDT)
Received: from servo.qualcomm.com (servo.qualcomm.com [129.46.76.82]) by ithilien.qualcomm.com (8.12.3/8.12.3/1.0) with ESMTP id g7FKSanS005750; Thu, 15 Aug 2002 13:28:36 -0700 (PDT)
Received: from GROSE.qualcomm.com (grose.qualcomm.com [129.46.77.236]) by servo.qualcomm.com (8.12.1/8.12.3/1.0) with ESMTP id g7FKSUsR004542; Thu, 15 Aug 2002 13:28:30 -0700 (PDT)
Message-Id: <5.1.0.14.2.20020816062009.045760c0@203.30.171.11>
X-Sender: ggr2@203.30.171.11
X-Mailer: QUALCOMM Windows Eudora Version 5.1
Date: Fri, 16 Aug 2002 06:28:29 +1000
To: "Housley, Russ" <rhousley@rsasecurity.com>
From: Greg Rose <ggr@qualcomm.com>
Subject: Re: [Cfrg] draft-housley-ccm-mode-00.txt
Cc: Greg Rose <ggr@qualcomm.com>, cfrg@ietf.org
In-Reply-To: <5.1.0.14.2.20020815155506.032e8e40@exna07.securitydynamics .com>
References: <5.1.0.14.2.20020816035038.04656310@203.30.171.11> <5.1.0.14.2.20020815104520.03521ac8@exna07.securitydynamics .com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Sender: cfrg-admin@ietf.org
Errors-To: cfrg-admin@ietf.org
X-Mailman-Version: 1.0
Precedence: bulk
List-Id: Crypto Forum Research Group <cfrg.ietf.org>
X-BeenThere: cfrg@ietf.org

At 03:59 PM 8/15/2002 -0400, Housley, Russ wrote:
>I understand the conventional wisdom that you are offering.  However, 
>authenticated encryption (using a single key) has been an area of recent 
>research.  IAPM, OCB, and CCM are approaches.

Yes, and look at how much trouble those (XECB, IAPM, OCB) methods go to, to 
derive unknowable inputs to combine with the data for the authentication 
process. CCM, on the other hand, provides lots of potentially known 
plaintext/ciphertext blocks from the counter mode for an attacker to play 
MAC games with.

I remain uncomfortable. But I can't spend time at the moment, so I withdraw 
my beginning objection.

regards,
Greg.



Greg Rose                                       INTERNET: ggr@qualcomm.com
Qualcomm Australia          VOICE:  +61-2-9817 4188   FAX: +61-2-9817 5199
Level 3, 230 Victoria Road,                http://people.qualcomm.com/ggr/
Gladesville NSW 2111    232B EC8F 44C6 C853 D68F  E107 E6BF CD2F 1081 A37C


_______________________________________________
Cfrg mailing list
Cfrg@ietf.org
https://www1.ietf.org/mailman/listinfo/cfrg