Camellia project proposal
tlyu at MIT.EDU
Thu Dec 10 23:08:59 EST 2009
Sam Hartman <hartmans at MIT.EDU> writes:
>>>>>> "Ken" == Ken Raeburn <raeburn at MIT.EDU> writes:
> Ken> On Dec 8, 2009, at 14:35, Sam Hartman wrote:
> >> However, I would strongly object to an enctype that did not have
> >> self-describing tokens--that is, an enctype where the plaintext
> >> length cannot be inferred from the decrypted token.
> Ken> I think it'd be a nice property to have, but given the
> Ken> existence of DES and 3DES, we've already lost the ability to
> Ken> take advantage of it in any real way (we need the
> Ken> self-describing ASN.1 DER encoding), so I'm not sure what it
> Ken> buys us now.
> CFX and some out-of-tree code I've seen treats DES as a special case and
> tries to make simplifying assumptions about other things.
As in assuming that decryption recovers the exact length of the
More information about the krbdev