IETF-SSH archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: a more detailed analysis of "known IV" vulnerability.

To: Wei Dai <weidai%eskimo.com@localhost>
Subject: Re: a more detailed analysis of "known IV" vulnerability.
From: nisse%lysator.liu.se@localhost (Niels Möller)
Date: 14 Mar 2002 11:58:55 +0100

Wei Dai <weidai%eskimo.com@localhost> writes:

> 2. By opening 2^24 channels, the attacker can gain control over 8 more
> bits of the plaintext for 8-byte block size, and 24 more bits for 16-byte
> block size.

Do implementations allow that? My implementation has an arbitrary
limit of 2^17 channels per connection. (And channel numbers are
allocated sequentially).

/Niels

Follow-Ups:
- Re: a more detailed analysis of "known IV" vulnerability.
  - From: Wei Dai

References:
- a more detailed analysis of "known IV" vulnerability.
  - From: Bill Sommerfeld
- Re: a more detailed analysis of "known IV" vulnerability.
  - From: Wei Dai

Prev by Date: Re: WG LAST CALL: SECSH Public Key File Format
Next by Date: Re: Core draft last call update.
Previous by Thread: Re: a more detailed analysis of "known IV" vulnerability.
Next by Thread: Re: a more detailed analysis of "known IV" vulnerability.
Indexes:

Home | Main Index | Thread Index | Old Index