Skip to main content
Disciplines
Automotive Business IT + Informatics Construction + Real Estate Electrical Engineering + Electronics Energy + Sustainability Insurance + Risk Finance + Banking Management + Leadership Marketing + Sales Mechanical Engineering + Materials
Events
DE
EN
Books
Journals
Topic Page
Marketing
Start single access now
Access for companies
EXTENDED SEARCH
Log in
Top
Published in:
Cryptanalysis of a Pseudorandom Generator Based on Braid Groups Read chapter Read first chapter

2002 | OriginalPaper | Chapter

Security Flaws Induced by CBC Padding — Applications to SSL, IPSEC, WTLS...

Author : Serge Vaudenay

Published in: Advances in Cryptology — EUROCRYPT 2002

Publisher: Springer Berlin Heidelberg

Included in: Professional Book Archive

Get Access

Activate our intelligent search to find suitable subject content or patents.

search-config
loading …

In many standards, e.g. SSL/TLS, IPSEC, WTLS, messages are first pre-formatted, then encrypted in CBC mode with a block cipher. Decryption needs to check if the format is valid. Validity of the format is easily leaked from communication protocols in a chosen ciphertext attack since the receiver usually sends an acknowledgment or an error message. This is a side channel.In this paper we show various ways to perform an efficient side channel attack. We discuss potential applications, extensions to other padding schemes and various ways to fix the problem.

previous chapter Degree of Composition of Highly Nonlinear Functions and Applications to Higher Order Differential Cryptanalysis
Metadata
Title
Security Flaws Induced by CBC Padding — Applications to SSL, IPSEC, WTLS...
Author
Serge Vaudenay
Copyright Year
2002
Publisher
Springer Berlin Heidelberg
Book
Advances in Cryptology — EUROCRYPT 2002

Print ISBN: 978-3-540-43553-2

Electronic ISBN: 978-3-540-46035-0

Copyright Year: 2002

DOI
https://doi.org/10.1007/3-540-46035-7_35

Premium Partner

    Image Credits