Proposed modifications to replay cache to prevent false positives

Ken Raeburn raeburn at MIT.EDU
Thu Jun 2 15:58:37 EDT 2005

On Jun 2, 2005, at 15:37, Sam Hartman wrote:
> Here's an example of what I'm talking about.  Change the encoding of
> the enctype in the EncryptedData sequence to be non-minimal length.
> AN attacker can do this to perform a replay.

Oh, duh, yes.  Once again, I read it too quickly... *sigh*
Only the ciphertext itself is actually of interest.


More information about the krbdev mailing list