[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Questions about misuse vulnerabilities

To: linux-crypto@xxxxxxxxxxxx
Subject: Questions about misuse vulnerabilities
From: Phil Grundig <wdef200@xxxxxxxxxxx>
Date: Sun, 11 Jan 2009 18:41:26 +0000 (GMT)
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.co.uk; h=X-YMail-OSG:Received:X-Mailer:Date:From:Reply-To:Subject:To:MIME-Version:Content-Type:Content-Transfer-Encoding:Message-ID; b=ezGosFkxfZl6Ok55ZRe23OeS044Cq1gtZaTzOZiZE5S9syGngJI5BHO+VZ2WlS5Uz162n3m/5UR0EblgySLWDpdamvW7byti1WYgseFJvOonKrjdIMLA/XhjW5yGvNs99OCCQhx0DaJgL8lslbFJNSFoIq3PLMixLAbos1UuBNw=;
List-archive: <http://mail.nl.linux.org/linux-crypto/>
List-help: <mailto:ecartis@nl.linux.org?Subject=help>
List-id: <linux-crypto.nl.linux.org>
List-owner: <mailto:ecartis-owner@nl.linux.org>
List-post: <mailto:linux-crypto@nl.linux.org>
List-software: Ecartis version 1.0.0
List-subscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=subscribe>
List-unsubscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=unsubscribe>
Reply-to: wdef200@xxxxxxxxxxx
Sender: linux-crypto-bounce@xxxxxxxxxxxx

Hi

2 separate questions:

1.  I've read that you are not supposed to use the same gpg key on different loop-aes volumes.  Why?  Even if the volumes contains some (but not all)  data in common, how does that help an attacker?

2. How long in bytes does a known plaintext string encrypted at a known position on a v3.x loop-aes encrypted device have to be to allow an attacker to reverse engineer what the v3.x plaintext multiline key must be?

Thanks




-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/

Follow-Ups:
- Re: Questions about misuse vulnerabilities
  - From: Jari Ruusu

Prev by Date: Re: Mounting loop-aes using FreeOTFE under Windows?
Next by Date: Re: loop-AES and Suse 11.1
Previous by thread: Re: Mounting loop-aes using FreeOTFE under Windows?
Next by thread: Re: Questions about misuse vulnerabilities
Index(es):
- Date
- Thread