[144513] in cryptography@c2.net mail archive

home help back first fref pref prev next nref lref last post

padding attack vs. PKCS7

daemon@ATHENA.MIT.EDU (travis+ml-cryptography@subspacefie)
Fri Jun 12 10:25:18 2009

Date: Thu, 11 Jun 2009 11:37:16 -0500
From: travis+ml-cryptography@subspacefield.org
To: cryptography@metzdowd.com
Mail-Followup-To: cryptography@metzdowd.com


--4VrXvz3cwkc87Wze
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

http://www.matasano.com/log/1749/typing-the-letters-a-e-s-into-your-code-yo=
ure-doing-it-wrong/

Towards the end of this rather offbeat blog post they describe a
rather clever attack which is possible when the application provides
error messages (i.e. is an error oracle) for PKCS7 padding in e.g. AES
CBC-encrypted web authenticators that allows an adversary to attack
the crypto one octet at a time.
--=20
Obama Nation | My emails do not have attachments; it's a digital signature
that your mail program doesn't understand. | http://www.subspacefield.org/~=
travis/=20
If you are a spammer, please email john@subspacefield.org to get blackliste=
d.

--4VrXvz3cwkc87Wze
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (OpenBSD)
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=t4Qu
-----END PGP SIGNATURE-----

--4VrXvz3cwkc87Wze--

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
home help back first fref pref prev next nref lref last post