RE: AEAD in ssh

To: denis bider <ietf-ssh3%denisbider.com@localhost>, Watson Ladd <watsonbladd%gmail.com@localhost>, Niels Möller <nisse%lysator.liu.se@localhost>
Subject: RE: AEAD in ssh
From: Peter Gutmann <pgut001%cs.auckland.ac.nz@localhost>
Date: Wed, 24 Feb 2016 09:52:09 +0000

denis bider <ietf-ssh3%denisbider.com@localhost> writes:

>That implementation, with unencrypted packet lengths, sabotages any hope of
>thwarting traffic analysis, even through high-overhead SSH_MSG_IGNORE padding.

With encrypted packet lengths and padding you're still not thwarting traffic
analysis, you're just making the job a lot more difficult for the implementer.
See my previous message.

Peter.

References:
- Re: AEAD in ssh
  - From: Watson Ladd
- Re: AEAD in ssh
  - From: denis bider

Prev by Date: RE: AEAD in ssh
Next by Date: Re: AEAD in ssh
Previous by Thread: Re: AEAD in ssh
Next by Thread: Re: AEAD in ssh
Indexes:

Home | Main Index | Thread Index | Old Index