[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Cfrg] draft-housley-ccm-mode-00.txt
Doing the authentication and the encryption with the same key is bad
practice. You should take the input key, and derive from it two subordinate
keys, which are independent of each other as far as an outside attacker can
tell, then use one of them for the counter mode encryption, the other for
the CBC-MAC.
regards,
Greg.
At 10:55 AM 8/15/2002 -0400, Housley, Russ wrote:
>Dear CFRG:
>
>I would like to draw your attention to this document. It contains a
>specification for an authenticated encryption mode. It was designed fro
>use with AES, but, of course, it will work with any 128-bit block cipher.
>
>The authors have submitted it to NIST for consideration as a FIPS
>mode. You can learn more about CCM and the other proposed modes at the
>NIST web site ( see http://csrc.nist.gov/encryption/modes/proposedmodes/ ).
>
>IEEE 802.11 has chosen to make CCM the mandatory to implement AES mode for
>wireless LAN encryption. IEEE 802.15 has also chosen CCM for use with
>personal area networks. In my opinion, this success is due to the lack of
>a patent (or pending patent from the authors) on CCM. I suspect that most
>of the members of this list are aware that other candidate authenticated
>encryption modes are encumbered.
>
>It is my intention to publish draft-housley-ccm-mode-00.txt as an
>Informational RFC. This looks like the appropriate group to review the
>document.
>
>Russ
>
>_______________________________________________
>Cfrg mailing list
>Cfrg@ietf.org
>https://www1.ietf.org/mailman/listinfo/cfrg
>
Greg Rose INTERNET: ggr@qualcomm.com
Qualcomm Australia VOICE: +61-2-9817 4188 FAX: +61-2-9817 5199
Level 3, 230 Victoria Road, http://people.qualcomm.com/ggr/
Gladesville NSW 2111 232B EC8F 44C6 C853 D68F E107 E6BF CD2F 1081 A37C
_______________________________________________
Cfrg mailing list
Cfrg@ietf.org
https://www1.ietf.org/mailman/listinfo/cfrg