Re: Why the auxiliary cipher in gss_krb5_crypto.c?

From: David Howells
Date: Fri Dec 04 2020 - 11:04:31 EST

Next message: Theodore Y. Ts'o: "Re: [PATCH V2] uapi: fix statx attribute value overlap for DAX & MOUNT_ROOT"
Previous message: Elia Devito: "[PATCH v3 1/2] intel-hid: add support for SW_TABLET_MODE"
In reply to: Bruce Fields: "Re: Why the auxiliary cipher in gss_krb5_crypto.c?"
Next in thread: Bruce Fields: "Re: Why the auxiliary cipher in gss_krb5_crypto.c?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Bruce Fields <bfields@xxxxxxxxxxxx> wrote:

> > Reading up on CTS, I'm guessing the reason it's like this is that CTS is the
> > same as the non-CTS, except for the last two blocks, but the non-CTS one is
> > more efficient.
>
> CTS is cipher-text stealing, isn't it? I think it was Kevin Coffman
> that did that, and I don't remember the history. I thought it was
> required by some spec or peer implementation (maybe Windows?) but I
> really don't remember. It may predate git. I'll dig around and see
> what I can find.

rfc3961 and rfc3962 specify CTS-CBC with AES.

David

Next message: Theodore Y. Ts'o: "Re: [PATCH V2] uapi: fix statx attribute value overlap for DAX & MOUNT_ROOT"
Previous message: Elia Devito: "[PATCH v3 1/2] intel-hid: add support for SW_TABLET_MODE"
In reply to: Bruce Fields: "Re: Why the auxiliary cipher in gss_krb5_crypto.c?"
Next in thread: Bruce Fields: "Re: Why the auxiliary cipher in gss_krb5_crypto.c?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]