Re: [PATCH/proposal] dm-crypt: add digest-based iv generation mode

From: Andrew Morton
Date: Thu Feb 19 2004 - 14:25:27 EST

Next message: Greg KH: "Re: [ANNOUNCE] udev 018 release"
Previous message: Greg KH: "HOWTO use udev to manage /dev"
In reply to: Christophe Saout: "[PATCH/proposal] dm-crypt: add digest-based iv generation mode"
Next in thread: Jean-Luc Cooke: "Re: [PATCH/proposal] dm-crypt: add digest-based iv generation mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Christophe Saout <christophe@xxxxxxxx> wrote:
>
> Hello,
>
> since some people keep complaining that the IV generation mechanisms
> supplied in cryptoloop (and now dm-crypt) are insecure, which they
> somewhat are, I just hacked a small digest based IV generation mechanism.
>
> It simply hashes the sector number and the key and uses it as IV.
>
> You can specify the encryption mode as "cipher-digest" like aes-md5 or
> serpent-sha1 or some other combination.

hmm.

> Consider this as a proposal, I'm not a crypto expert.

Me either. But I believe that there are crypto-savvy people reading this
list. Help would be appreciated.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Greg KH: "Re: [ANNOUNCE] udev 018 release"
Previous message: Greg KH: "HOWTO use udev to manage /dev"
In reply to: Christophe Saout: "[PATCH/proposal] dm-crypt: add digest-based iv generation mode"
Next in thread: Jean-Luc Cooke: "Re: [PATCH/proposal] dm-crypt: add digest-based iv generation mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]