|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: ssh - are you nuts?!?
From: Bill Sommerfeld (sommerfeld
orchard.arlington.ma.us)Date: Mon Dec 18 2000 - 14:37:50 CST
- Next message: Simon J. Gerraty: "Re: ssh - are you nuts?!?"
- Previous message: Jason R Thorpe: "Re: ssh - are you nuts?!?"
- Next in thread: Simon J. Gerraty: "Re: ssh - are you nuts?!?"
- Maybe reply: Bill Sommerfeld: "Re: ssh - are you nuts?!?"
- Reply: Simon J. Gerraty: "Re: ssh - are you nuts?!?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
> Authentication is pointless without a means of ensuring the integrity of
> the channel
Correct.
> and encryption gives you that as a side effect.
False.
I am not aware of any generally accepted encryption algorithm or mode
of operation which provides data integrity as a side-effect; modes of
operation which combine integrity and authenticity are still very much
an area of research.
While many block ciphers in CBC mode will garble a block or two if
tampered with, the cryptosystem will resynch after the garble. PCBC
is alleged to corrupt the rest of the block, but there are some cases
where it will resynch after the garble..
Many stream-cipher modes are even more forgiving of tampering and
allow an attacker to toggle arbitrary plaintext bits through the
encryption.
- Bill
- Next message: Simon J. Gerraty: "Re: ssh - are you nuts?!?"
- Previous message: Jason R Thorpe: "Re: ssh - are you nuts?!?"
- Next in thread: Simon J. Gerraty: "Re: ssh - are you nuts?!?"
- Maybe reply: Bill Sommerfeld: "Re: ssh - are you nuts?!?"
- Reply: Simon J. Gerraty: "Re: ssh - are you nuts?!?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]