ED]>
Sent: Saturday, January 26, 2002 9:47 AM
Subject: Re: Question on combining encryption with authentication
> On Fri, Jan 25, 2002 at 10:31:34AM -0700, James Yonan wrote:
> > > "James Yonan" <[EMAIL PROTECTED]> writes:
> > > > What is the
"James Yonan" <[EMAIL PROTECTED]> writes:
> What is the best way to authenticate an encrypted packet in a peer-to-peer
> application that uses a symmetric cipher and a shared private key?
Tehre's been a lot of argument about this.
There are some theoretical attacks that suggest that you should
ha
What is the best way to authenticate an encrypted packet in a peer-to-peer
application that uses a symmetric cipher and a shared private key?
I can think of several ways such as:
(1) HMAC(CBC(timestamp, plaintext)), CBC(timestamp, plaintext)
(2) CBC(HMAC(timestamp, plaintext), timestamp, plainte