On 29/07/2016 09:23, R-D intern wrote:
Hello Benjamin, Thanks for the reply. I know the purpose and benefit of creating different cipher texts of the same corresponding plain text.But I would like to know about the places where this randomness gets introduced to create different encrypted texts.Because SSL handshake takes place only once. After creation of pre secret key(for an entire session) at both the client and the server ends, master key is created based on pre secret key, identifier label, client and server random numbers which is again maintained for an entire session . The master key is responsible for creating MAC key, bulk encryption key and IV for client - server read - write. If the bulk encryption key (which is responsible for encrypting the message ) for an entire session is fixed and constant, then how is the encrypted text different? Regards, Suman
The IV changes. The precise method of changing the IV depends on the TLS version, because the method used in SSL 3 and TLS 1.0 was not as secure as it should be. Enjoy Jakob -- Jakob Bohm, CIO, Partner, WiseMo A/S. https://www.wisemo.com Transformervej 29, 2860 Søborg, Denmark. Direct +45 31 13 16 10 This public discussion message is non-binding and may contain errors. WiseMo - Remote Service Management for PCs, Phones and Embedded -- openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users