undefined | Better HN

0 pointsbob10296y ago0 comments

What's wrong with using AES in CBC mode?

0 comments

See my original comment about attack surface. Given the correct set of circumstances, transmitting the IV in the clear with CBC could possibly open you up to chosen ciphertext/plaintext attacks. And you better be doing encrypt-then-prepend-IV-then-MAC with CBC. Just a lot of gotchas that may or may not be relevant, depending on your environment.

j / k navigate · click thread line to collapse

0 pointsbob10296y ago0 comments

What's wrong with using AES in CBC mode?

0 comments

exabrial6y ago

See my original comment about attack surface. Given the correct set of circumstances, transmitting the IV in the clear with CBC could possibly open you up to chosen ciphertext/plaintext attacks. And you better be doing encrypt-then-prepend-IV-then-MAC with CBC. Just a lot of gotchas that may or may not be relevant, depending on your environment.

j / k navigate · click thread line to collapse