Abstract
In [8], Paterson and Yau presented padding oracle attacks against a committee draft version of a revision of the ISO CBC-mode encryption standard [3]. Some of the attacks in [8] require knowledge and manipulation of the initialisation vector (IV). The latest draft of the revision of the standard [4] recommends the use of IVs that are secret and random. This obviates most of the attacks of [8]. In this paper we consider the security of CBC-mode encryption against padding oracle attacks in this secret, random IV setting. We present new attacks showing that several ISO padding methods are still weak in this situation.
Chapter PDF
Similar content being viewed by others
References
ISO/IEC 9797-1: Information technology — Security techniques — Message Authentication Codes (MACs) — Part 1: Mechanisms using a block cipher (1999)
ISO/IEC 10118-1 (2nd edition): Information technology — Security techniques — Hash-functions — Part 1: General (2000)
ISO/IEC 2nd CD 10116 (revision): Information technology — Security techniques — Modes of operation for an n-bit block cipher (2002) (Second committee draft of proposed 3rd edition of the standard)
ISO/IEC FCD 10116 (2nd edition): Information technology — Security techniques — Modes of operation for an n-bit block cipher (2004) (Final committee draft of proposed 3rd edition of the standard)
Bellare, M., Desai, A., Jokipii, E., Rogaway, P.: A Concrete Analysis of Symmetric Encryption: Analysis of the DES Modes of Operations. In: 38th IEEE Symposium on Foundations of Computer Science, pp. 394–409. IEEE, Los Alamitos (1997)
Black, J., Urtubia, H.: Side-Channel Attacks on Symmetric Encryption Schemes: The Case for Authenticated Encryption. In: Proceedings of the 11th USENIX Security Symposium, San Francisco, CA, USA, August 5-9, pp. 327–338. USENIX (2002)
Canvel, B., Hiltgen, A.P., Vaudenay, S., Vuagnoux, M.: Password interception in a SSL/TLS channel. In: Boneh, D. (ed.) CRYPTO 2003. LNCS, vol. 2729, pp. 583–599. Springer, Heidelberg (2003)
Paterson, K.G., Yau, A.K.L.: Padding oracle attacks on the ISO CBC mode encryption standard. In: Okamoto, T. (ed.) CT-RSA 2004. LNCS, vol. 2964, pp. 305–323. Springer, Heidelberg (2004)
Vaudenay, S.: Security flaws induced by CBC padding - applications to SSL, IPSEC, WTLS.. In: Knudsen, L.R. (ed.) EUROCRYPT 2002. LNCS, vol. 2332, pp. 534–545. Springer, Heidelberg (2002)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2005 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Yau, A.K.L., Paterson, K.G., Mitchell, C.J. (2005). Padding Oracle Attacks on CBC-Mode Encryption with Secret and Random IVs. In: Gilbert, H., Handschuh, H. (eds) Fast Software Encryption. FSE 2005. Lecture Notes in Computer Science, vol 3557. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11502760_20
Download citation
DOI: https://doi.org/10.1007/11502760_20
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-26541-2
Online ISBN: 978-3-540-31669-5
eBook Packages: Computer ScienceComputer Science (R0)