[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: alleged-RC4

To: Hal <[email protected]>
Subject: Re: alleged-RC4
From: Bill Sommerfeld <[email protected]>
Date: Wed, 14 Sep 1994 11:22:21 -0400
Cc: [email protected]
In-Reply-To: Your message of "Tue, 13 Sep 1994 21:02:38 -0700 ." <[email protected]>
Sender: [email protected]

I agree; this cypher should definitely be handed a unique key each
time it is used.

However, you can do this pretty easily for file encryption, too..
Generate and store an "initialization vector" with each file of
cyphertext.  Instead of passing the user key directly to RC4, you
instead pass a hash (MD5 or SHA) of the user key concatenated with the
IV.

If you don't have room to store the IV's, you could use some
position-dependant information (e.g., per disk ID plus disk block
number or file inode number) instead.

						- Bill

References:
- Re: alleged-RC4
  - From: Hal <[email protected]>

Prev by Date: Re: Is cypherpunks archived somewhere?
Next by Date: Re: Running PGP on Netcom (and Similar)
Prev by thread: Re: alleged-RC4
Next by thread: RC4
Index(es):
- Date
- Thread