[529] in Kerberos
Re: Ticket Authentication
daemon@TELECOM.MIT.EDU (Jerome H. Saltzer)
Mon Nov 7 12:19:10 1988
To: miller%erlang.DEC@DECWRL.DEC.COM (Steve Miller)
Cc: kerberos@ATHENA.MIT.EDU, MILLER%erlang.DEC@DECWRL.DEC.COM
In-Reply-To: miller%erlang.DEC@decwrl.dec.com (Steve Miller)'s message of 7 Nov 88 10:30
From: Jerome H. Saltzer <Saltzer@ATHENA.MIT.EDU>
> As Ted pointed out, the new "pcbc" mode I suggested in a Nov 2 memo
> is no good - the cleartext could be recovered by an exhaustive search
> of XORs. I retract the suggestion-- the cure was worse than the
> disease. Our crypto guy also realized this, but unfortunately not
> until after I had sent the note out. So much for ad-hoc design.
Would someone be so good as to remind me just how serious is the
disease for which this particular modification, had it not been a
loser, would have been a cure?
Jerry
