On Wed, 2007-01-03 at 18:19 +0000, Darren J Moffat wrote:
> > In addition, I think we need a better customer-facing description of
> > what security is and is not provided by this mechanism -- for instance,
> > it's intended to provide confidentiality in the event that the
> > underlying media is stolen, but not in the event that the underlying
> > media is subject to arbitrary manipulation by an attacker.
>
> Agreed but is this really architecture or advice for the man pages ?
> In other words does the ARC need to see this wording to approve this case ?
This is architecture.
Because the IV is fixed for any given block, lofi may repeatedly encrypt
different plaintext with the same {key, IV} combination, which is an
"off label" use of the cipher mode.
- Bill
