Hosting Provided By

[Hipsec] NULL encryption and encrypted record IV

From: Andrew McGregor <andrew(at)indranet.co.nz>
Date: Mon Mar 17 2003 - 19:12:19 EST

In 3.4.13, the ENCRYPTED record specifies an IV. There are two issues here: the diagram is drawn with an 8-byte IV, which is not the blocksize for all ciphers, and in NULL encryption (which is essentially a stream cipher) there is no IV. The spec says that the IV should be zero if not needed, rather than omitted (zero bytes long).

Also, there is no specification for which cipher mode should be used in the HIP encryption suites (although everyone assumes CBC), nor how to generate IVs.

Andrew

Hipsec mailing list
Hipsec@lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/hipsec

application/pgp-signature attachment: stored

Received on Mon Mar 17 19:47:48 2003

This message: [ Message body ]
Next message: Derek Fawcus: "Re: [Hipsec] Re: The exact method used to generate a HIT from a HI"
Previous message: Juha Heinanen: "Re: [Hipsec] More about LSIs"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 12:59:58 EDT