On Fri, 17 Jun 2005 09:36:07 +0200, Michael Buchholz writes: >On Fri, 17 Jun 2005 17:15:32 +1000 >Alexander Zangerl <az@bond.edu.au> wrote: > >> no, this is subtly wrong. the *encrypted* block affects the decryption >> of the block following it, not the cleartext block. > >That's a possible, but unsecure way to do that. please note that i was talking about encryption algo blocks, not filesystem blocks. what i've outlined is just the normal way cbc is implemented - which is what martin asked about. how far you chain is up to the implementer of a crypto fs; and of course there are pros and cons for chaining globally vs. chaining just a few crypto blocks into a single fs block. regards az -- + Alexander Zangerl az@bond.edu.au DSA 0xF860ACF1 + + Bond University IT School phone +61 7 5595 3398 +
Attachment:
pgp0isBiTmg3m.pgp
Description: PGP signature