CBC without MAC
Brought to you by:
thesun
From: Maarten B. <maa...@gm...> - 2015-06-16 23:12:02
|
Hi rsyncrypto devs, I've tried reading the source code but I cannot see if there is any signature or MAC added to the ciphertext. Is it possible that this protocol is vulnerable to padding Oracle attacks (in addition to changes to the ciphertext / plaintext)? Or am I mistaken about that? Is there any clear protocol description that would show how the ciphertext is constructed together? Regards, Maarten |