Re: [kitten] History of AES block size issues
Luke Howard <lukeh@padl.com> Wed, 14 August 2013 23:55 UTC
Return-Path: <lukeh@padl.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C1AF621E80C3 for <kitten@ietfa.amsl.com>; Wed, 14 Aug 2013 16:55:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2LFc984WlDll for <kitten@ietfa.amsl.com>; Wed, 14 Aug 2013 16:55:29 -0700 (PDT)
Received: from us.padl.com (us.padl.com [216.154.215.154]) by ietfa.amsl.com (Postfix) with ESMTP id A2DDD21E8082 for <kitten@ietf.org>; Wed, 14 Aug 2013 16:55:29 -0700 (PDT)
Received: by us.padl.com with ESMTP id r7ENtIv8013371; Wed, 14 Aug 2013 19:55:20 -0400
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 6.5 \(1508\))
From: Luke Howard <lukeh@padl.com>
In-Reply-To: <tslsiybaldd.fsf@mit.edu>
Date: Thu, 15 Aug 2013 09:55:17 +1000
Content-Transfer-Encoding: quoted-printable
Message-Id: <970B41DA-0AE6-4CC8-9DAB-A4049D8F0A44@padl.com>
References: <tslk3jodwgc.fsf@mit.edu> <5674376E76F88641AD3748A64F0996971AAB7DDE@TK5EX14MBXC285.redmond.corp.microsoft.com> <tslsiybaldd.fsf@mit.edu>
To: Sam Hartman <hartmans-ietf@mit.edu>
X-Mailer: Apple Mail (2.1508)
X-SMTP-Vilter-Version: 1.3.6
X-Spamd-Symbols: AWL,BAYES_00,RDNS_NONE,USER_IN_WHITELIST
X-SMTP-Vilter-Spam-Backend: spamd
X-Spam-Threshold: 5.0
X-Spam-Probability: -20.5
Cc: "kitten@ietf.org" <kitten@ietf.org>, Michiko Short <michikos@microsoft.com>
Subject: Re: [kitten] History of AES block size issues
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 14 Aug 2013 23:55:34 -0000
> If I send you a 9-octet message it's actually 16. > If I send you a 16-octet message it's still 16 octets. Is it not 24 octets? > Greg, am I right that if your application aligns to a block size then > you'll actually end up expanding more so you can indicate no padding is > needed? > If so will DCE RPC be OK with that? I believe it's fine for the reasons I mentioned in my last mail: Note "trailer" here means DCE RPC auth trailer, containing the RFC 4121 "header" (which has the EC and checksum rotated into a single token) * DCE RPC always pads at the application layer, if this it to at least 16 bytes then we will have a constant length trailer (we need to investigate this) * Even if DCE RPC doesn't pad at the application layer to 16 bytes, [MS-RPCE] allows the trailer to be over-allocated, so as long as it's big enough for the largest value of EC, variable length trailers are OK -- Luke
- [kitten] History of AES block size issues Sam Hartman
- Re: [kitten] History of AES block size issues Michiko Short
- Re: [kitten] History of AES block size issues Sam Hartman
- Re: [kitten] History of AES block size issues Luke Howard
- Re: [kitten] History of AES block size issues Sam Hartman
- Re: [kitten] History of AES block size issues Tom Yu