17 Dec
2003
17 Dec
'03
11:17 p.m.
Wait a minute: RC4 is an OFB cipher. The previous plaintext has no effect on the ciphertext. Hence, an attacker with shitloads of storage capacity can generate some initial output for each key and test each pre-stored key against ciphertext for possible hits. Using 'flaws' in the key schedule (esp. if the key is based on a password rather than a hash of a password) one could search for 'more likely keys' first. Rob --- No-frills sig. Befriend my mail filter by sending a message with the subject "send help" Key-ID: 5D3F2E99 1996/04/22 wlkngowl@unix.asb.com (root@magneto) Send a message with the subject "send pgp-key" for a copy of my key.