iaPCBC papers

"Steven M. Bellovin" <smb@research.att.com> Tue, 16 November 1999 22:37 UTC

Received: from lists.tislabs.com (portal.gw.tislabs.com [192.94.214.101]) by ns.secondary.com (8.9.3/8.9.3) with ESMTP id OAA04528; Tue, 16 Nov 1999 14:37:28 -0800 (PST)
Received: by lists.tislabs.com (8.9.1/8.9.1) id PAA25828 Tue, 16 Nov 1999 15:58:15 -0500 (EST)
X-Mailer: exmh version 2.0.2 2/24/98
From: "Steven M. Bellovin" <smb@research.att.com>
To: ipsec@lists.tislabs.com
Subject: iaPCBC papers
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Tue, 16 Nov 1999 16:01:15 -0500
Message-Id: <19991116210120.3DB7741F16@SIGABA.research.att.com>
Sender: owner-ipsec@lists.tislabs.com
Precedence: bulk

A slightly-revised version of the draft is at 
http:/home/smb/lib/wwwfiles/papers/draft-bellovin-iapcbc-00.txt -- the claim 
that this mode is resistant to exhaustive key search has been deleted, since 
several people found successful attacks on that.  The Gligor-Donescu paper 
it's based on is at file:/home/smb/lib/wwwfiles/papers/iapcbc.ps.

A further change is needed (but has not yet been made) to the Internet draft:  
as written, it is suspectible to some truncation attacks.  While the practical 
significance of those attacks is unclear, the issue should certainly be 
addressed; there are several possible ways to do that.  But I wanted to first
post a version that deletes the key search claim.

		--Steve Bellovin