registry team mailing list archive

Thread
Date

[Bug 244480] Re: support AES-XTS mode

To: registry@xxxxxxxxxxxxxxxxxxx
From: Mårten Thornberg <244480@xxxxxxxxxxxxxxxxxx>
Date: Sat, 04 Sep 2010 21:26:45 -0000
Reply-to: Bug 244480 <244480@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Well, the paper also says that:

"Use of a single cryptographic key for more than a few hundred terabytes
of data opens possibility of attacks, as described in D.4.3. The
limitation on the size of data encrypted with a single key is not unique
to this standard. It comes directly from the fact that AES has a block
size of 128 bits and is not mitigated by using AES with a 256-bit key."

So it might not be a unique problem for XTS but anything using AES with
128 bit blocks?

The entire partition should also be filled with randomized data before
encryption.

-- 
support AES-XTS mode
https://bugs.launchpad.net/bugs/244480
You received this bug notification because you are a member of Registry
Administrators, which is the registrant for Debian.