On Wed, Feb 05, 2014 at 01:03:00AM +0400, Yuriy Kaminskiy wrote:
If attacker knows/expect content of message, he can discover (and prove) message authorship. This is not most likely scenario, but still totally not good. Signature should be encrypted too.
Well, I can change that, no problem.
With pbp encryption scheme, each 32kb block is encrypted with stream cipher with *explicit random nonce*. Unlike ECB, if you encrypt same blocks on same key, you'll have *different* ciphertext (as they used different nonces). None of above ECB problems apply.
Which is the very same I do in pcp. It was just a question, i.e. "may cbc provide even more security than ecb+nonces?" - Tom -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.