hai, The elephant diffuser is to prevent manipulation attacks on adjacent blocks in AES-CBC encrypted text. The idea to use such a diffuser is good. The security improvement it provides is not fully known but the diffuser is very light and maybe worth the try. Since it is used with AES-CBC, it is as secure as AES-CBC.
Sarad. --- On Fri, 4/17/09, Faisal Abbasi <[email protected]> wrote: > From: Faisal Abbasi <[email protected]> > Subject: [FDE] FDE and integrity > To: [email protected] > Date: Friday, April 17, 2009, 11:37 AM > Hi, > > I was wondering if any of the current FDE schemes (SW or > HW) provide integrity of data? I know BitLocker provides > some sort of integrity using Elephant diffuser but that is > quite weak from crypto point of view. Microsoft itself > claims that it provides just "poor man's > authentication"[1] . So is there any scheme that claims > to provide both privacy and authenticity? Thanks in > anticipation. > > > Regards > Faisal > > [1] Niels Ferguson. 2006. AES-CBC + Elephant diffuser. A > Disk Encryption Algorithm for Windows Vista. > > > -----Inline Attachment Follows----- > > _______________________________________________ > FDE mailing list > [email protected] > http://www.xml-dev.com/mailman/listinfo/fde > _______________________________________________ FDE mailing list [email protected] http://www.xml-dev.com/mailman/listinfo/fde
