[cryptography] [tahoe-dev] proposal: add padding

Eugen Leitl eugen at leitl.org
Mon Jul 15 07:10:03 EDT 2013

----- Forwarded message from Zooko O'Whielacronx <zookog at gmail.com> -----

Date: Fri, 12 Jul 2013 16:56:47 +0000
From: Zooko O'Whielacronx <zookog at gmail.com>
To: Tahoe-LAFS development <tahoe-dev at tahoe-lafs.org>
Subject: Re: [tahoe-dev] proposal: add padding
Reply-To: Tahoe-LAFS development <tahoe-dev at tahoe-lafs.org>

No, no, we rely on the correctness of our encryption to hide all
information about the plaintext from an attacker who doesn't know the
encryption key. Therefore, the pad bytes are all just zero bytes, and
we believe that this pattern gives nothing useful to the cryptanalyst.

(Our encryption is currently AES. I hope in the future to upgrade it
to AES⊕XSalsa20 — see #1164 and wiki:OneHundredYearCryptography.)

https://tahoe-lafs.org/trac/tahoe-lafs/ticket/1164# use
XSalsa20+AES-128 encryption



tahoe-dev mailing list
tahoe-dev at tahoe-lafs.org

----- End forwarded message -----
Eugen* Leitl <a href="http://leitl.org">leitl</a> http://leitl.org
ICBM: 48.07100, 11.36820 http://ativel.com http://postbiota.org
AC894EC5: 38A5 5F46 A4FF 59B8 336B  47EE F46E 3489 AC89 4EC5

More information about the cryptography mailing list