Ian Grigg wrote:
Has anyone kept up to date with AES modes?
http://csrc.nist.gov/CryptoToolkit/modes
http://csrc.nist.gov/CryptoToolkit/modes/proposedmodes/
I'm looking for basic mode to encrypt blocks (using AES)
of about 1k in length, +/- an order of magnitude. Looking
at the above table (2nd
Zooko provided a bunch of useful comments in private mail,
which I've edited and forward for list consumption.
Zooko Wilcox-O'Hearn wrote:
EAX is in the same class as CCM. I think its slightly better. Also
there is GCM mode, which is perhaps a tiny bit faster, although maybe
not if you have to
http://online.wsj.com/article_print/0,,SB109744462285841431,00.html
The Wall Street Journal
October 11, 2004
Cash, Credit -- or Prints?
Fingerprints May Replace
Money, Passwords and Keys;
One Downside: Gummi Fakes
By WILLIAM M. BULKELEY
Staff Reporter of THE WALL STREET JOURNAL
October
Does anyone know the details of the certificate generation algorithms
used by various CAs?
In particular, Verisign's is very long and I seem to remember someone telling
me it was a hach but I don't recall the details...
Thanks,
-Ekr
Eric Rescorla [EMAIL PROTECTED] writes:
In particular, Verisign's is very long and I seem to remember someone telling
me it was a hach but I don't recall the details...
It's just a SHA-1 hash. Many CAs use this to make traffic analysis of how
many (or few) certificates they're issuing
In message [EMAIL PROTECTED] on Sun, 10 Oct 2004 18:16:21 -0700, Eric Rescorla
[EMAIL PROTECTED] said:
ekr Does anyone know the details of the certificate generation
ekr algorithms used by various CAs?
Variants I've heard of are:
- A simple counter starting at 0 (well, actually, I know this