english only
School of Computer and Communication Sciences
LASEC - Security and Cryptography Laboratory
EPFL > IC > LASEC > publications
Banner IC
INDEX
Home
People
Research
Teaching
Publications
Softwares & Events
Intranet
How to reach us

CONTACT

EPFL - I&C - ISC - LASEC
Station 14 - Building INF
CH-1015 Lausanne
Switzerland

Tel. +41 21 693 7603
Fax. +41 21 693 7689

Ref: Vau02a


Security Flaws Induced by CBC Padding - Applications to SSL, IPSEC, WTLS...
Serge Vaudenay

Published:
Advances in Cryptology EUROCRYPT'02, Amsterdam, Netherland, Lecture Notes in Computer Science No. 2332, pp. 534-545, Springer-Verlag, 2002.

Abstract:
In many standards, e.g. SSL/TLS, IPSEC, WTLS, messages are first pre-formatted, then encrypted in CBC mode with a block cipher. Decryption needs to check if the format is valid. Validity of the format is easily leaked from communication protocols in a chosen ciphertext attack since the receiver usually sends an acknowledgment or an error message. This is a side channel. In this paper we show various ways to perform an efficient side channel attack. We discuss potential applications, extensions to other padding schemes and various ways to fix the problem.

Note:
Proceedings version of Vau01.

Download   [HTTP]

© 2011, EPFL