Re: security fixes (KDF, MDC->MAC)?
disastry@saiknes.lv Fri, 27 September 2002 08:16 UTC
Received: from above.proper.com (mail.proper.com [208.184.76.45]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id EAA13948 for <openpgp-archive@lists.ietf.org>; Fri, 27 Sep 2002 04:16:35 -0400 (EDT)
Received: (from majordomo@localhost) by above.proper.com (8.11.6/8.11.3) id g8R8BBm02806 for ietf-openpgp-bks; Fri, 27 Sep 2002 01:11:11 -0700 (PDT)
Received: from hackserv.saiknes.lv (hackserv.klinkmann.lv [195.2.103.8]) by above.proper.com (8.11.6/8.11.3) with SMTP id g8R8B9v02795 for <ietf-openpgp@imc.org>; Fri, 27 Sep 2002 01:11:10 -0700 (PDT)
Received: from saiknes.lv (unverified [195.2.103.8]) by hackserv.saiknes.lv (SMTPRCV 0.45) with SMTP id <B0001615566@hackserv.saiknes.lv>; Fri, 27 Sep 2002 10:05:51 0200
Message-ID: <3D94115F.CAF2167A@saiknes.lv>
Date: Fri, 27 Sep 2002 10:05:51 +0200
From: disastry@saiknes.lv
X-Mailer: Mozilla 4.79 [en] (Windows NT 5.0; U)
X-Accept-Language: en,lv,ru
MIME-Version: 1.0
To: ietf-openpgp@imc.org
Subject: Re: security fixes (KDF, MDC->MAC)?
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>
Content-Transfer-Encoding: 7bit
-----BEGIN PGP SIGNED MESSAGE----- Hash: RIPEMD160 > Hello OpenPGP, > > Is there interest in fixing the security flaws discussed in the recent > "security analysis" thread? - > > (1) the Integrity Protected Data and MDC Packets fail to stop Schneier et > al's attack, because the ciphertext blocks can be pasted into a > non-integrity protected packet (ie ciphertext from a tag 18 packet can be > placed in a tag 9 packet, evading the MDC). 5.13. [...] Unlike the Symmetrically Encrypted Data Packet, no special CFB resynchronization is done after encrypting this prefix data. doesn't this prevent converting packet 18 to 9 ? __ Disastry http://disastry.dhs.org/ http://disastry.dhs.org/pgp ^----PGP 2.6.3ia-multi06 (supports IDEA, CAST5, BLOWFISH, TWOFISH, AES, 3DES ciphers and MD5, SHA1, RIPEMD160, SHA2 hashes) -----BEGIN PGP SIGNATURE----- Version: Netscape PGP half-Plugin 0.15 by Disastry / PGPsdk v1.7.1 iQA/AwUBPZP1EjBaTVEuJQxkEQOATQCgyqK8s+ckQ9Rdvv0gcMf7yro4TacAnjhj iKE3L05dk1Crh2gv2pEMGkUL =ZK80 -----END PGP SIGNATURE-----
- security fixes (KDF, MDC->MAC)? Trevor Perrin
- Re: security fixes (KDF, MDC->MAC)? disastry
- Re: security fixes (KDF, MDC->MAC)? Werner Koch
- RE: security fixes (KDF, MDC->MAC)? Trevor Perrin
- RE: security fixes (KDF, MDC->MAC)? Trevor Perrin