[4910] in cryptography@c2.net mail archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

permutations

daemon@ATHENA.MIT.EDU (Mike Stay)
Fri Jun 18 19:09:06 1999

Date: Fri, 18 Jun 1999 16:25:00 -0600
From: Mike Stay <stay@counterpane.com>
To: cryptography@c2.net

Consider a cipher in which the key size and block size are equal, such
as AES-128.  The key specifies a pseudo-random permutation of the
plaintexts, producing a ciphertext.  We know it's a permutation, because
ciphertexts and plaintexts are one-to-one, given a key.  It's not
necessarily true, however, that a plaintext specifies a permutation of
the keys: it is conceivable that a plaintext could encrypt to the same
ciphertext under two different keys.  

What are the pros/cons of having only one key take a given plaintext to
a given ciphertext? 
-- 
Mike Stay
Cryptographer / Programmer
AccessData Corp.
mailto:staym@accessdata.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[4910] in cryptography@c2.net mail archive

permutations

daemon@ATHENA.MIT.EDU (Mike Stay)Fri Jun 18 19:09:06 1999

daemon@ATHENA.MIT.EDU (Mike Stay)
Fri Jun 18 19:09:06 1999