[dm-devel] [PATCH] dm-crypt: disable block encryption with arc4
Sebastian Andrzej Siewior
sebastian at breakpoint.cc
Tue Feb 9 21:12:38 UTC 2010
* Herbert Xu | 2010-02-10 07:45:19 [+1100]:
>> Herbert, what happend to the "check for streamcipher" idea you had? Is
>> it gone? On the other hand it wouldn't be probably that bad to have a
>
>Well again whether that should be done is up to the dm-crypt
>maintainers.
Milan liked that afaik.
>> seprate interface to grab a block cipher _or_ a stream cipher. So
>
>Just because something isn't a stream cipher doesn't mean that
>it is safe for disk encryption. People simply shouldn't be using
>random algorithms for disk encryption.
>
>> I can't imaging how you want to fix arc4 that it will work in dm-crypt.
>
>I thought I've explained this before. Just turn it into a blkcipher
>and add IV.
I beg your pardon. I probably mixed things up.
>> The algorithm relies more or less on the fact that it envolves itself
>> during processing of data.
>
>This is no different to any stream cipher.
Sure. So we fix arc4 and don't play mother . Okay I will into this :)
>
>Cheers,
Sebastian
More information about the dm-devel
mailing list