Do you have a question? Post it now! No Registration Necessary. Now with pictures!
- Posted on
- ARCFOUR and initialization vectors
- K. Jennings
April 22, 2007, 7:02 pm
rate this thread
Re: ARCFOUR and initialization vectors
SSH-1 doesn't have a built-in concept of IVs at all; it just has a
single binary blob used as a session key. If an IV were desired then
part of that blob could be used as one and the rest used as the
cipher key, but in fact this doesn't generally happen: SSH-1 ciphers
which do require an IV (DES, 3DES, IDEA, Blowfish) set the IV
unconditionally to all-zeroes. So there's no question to answer for
Arcfour; the session key blob is simply divided down the middle and
the two halves are used as server->client and client->server keys,
and there is no IV data that needs ignoring.
Simon Tatham "loop, infinite _see_ infinite loop"
- » ssh on command line: force using a group size (prime size) of 1024 (and no...
- — Newest thread in » Secure Shell Forum