On Tue, Jan 26, 2010 at 12:37 PM, M.-A. Lemburg <m...@egenix.com> wrote:
<snip> > You are also using CBC mode, even though you are really after > ECB mode (your code doesn't use chaining). With ECB mode, you > don't need the IV string. However, ECB mode is not as secure- the IV is the right way to go here. I'd also note that you aren't supposed to use RandomPool anymore, and that AES-192 is frequently recommended over AES-256 for new applications due to a number of recent developments in the cryptanalysis of its key schedule. Geremy Condra -- http://mail.python.org/mailman/listinfo/python-list