What about the zero length? Wouldn't that reveal the encrypted IV since he's jus... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		n00body on Dec 27, 2016 \| parent \| context \| favorite \| on: Shellcode: A Windows PIC Using RSA-2048 Key Exchan... What about the zero length? Wouldn't that reveal the encrypted IV since he's just xoring sizeof(uint32_t) against the IV and not including any MAC?

tptacek on Dec 27, 2016 [–]

If it revealed anything, it'd be CTR keystream. The "IV" here is misnamed; it's the CTR counter block.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact