Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
sweis
on June 15, 2011
|
parent
|
context
|
favorite
| on:
My weekend project - AES encryption for Gmail or a...
This implementation is broken. It concatenates a hash of the plaintext to a CTR-mode ciphertext. That's weakly authenticated and leaks information about the plaintext.
It would be better to HMAC the ciphertext with a second key value.
eran
on June 24, 2011
[–]
Fixed. Thank you for advice about HMAC, now I am use it.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
It would be better to HMAC the ciphertext with a second key value.