Aram Perez wrote, On 19/4/07 6:29 PM: > Is there any danger in using AES128-CBC with a fixed IV of all zeros?
Here is some discussion about doing this, in the context of PGP doing just that and why PGP inserts random characters at the begining of the plaintext. http://archive.cert.uni-stuttgart.de/openpgp/2003/04/msg00026.html It points out that a fixed IV results in information leakage if the first block or more of plaintext is the same in two messages encrypted with the same key. Sidney Markowitz http://www.sidney.com --------------------------------------------------------------------- The Cryptography Mailing List Unsubscribe by sending "unsubscribe cryptography" to [EMAIL PROTECTED]