Do I need to change IV while encrypting multiple packets in CFB mode?

Question

Do I need to change IV while encrypting multiple packets in CFB mode?

Erlang crypto library has aes_cfb_ivecno function . Does this mean that the same IVecshould be used for several rounds? Or should you use encrypted data from the last step, as in the “DES in CBC mode” example at the end of the linked page?

+3

erlang aes

Alexey romanov 24 sept '10 at 6:43

source share

1 answer

Thomas Pornin · Accepted Answer · 2010-09-24T13:33:39+0000

IV MUST NOT be reused. Otherwise, two packets starting with the same n bytes will be encrypted into streams with the same n bytes. This is a serious security issue.

IV ( ). CFB IV. , , IV , ( CBC).

(, , CFB-m, m - . CFB-x x , CFB-128 128- , AES, , .)

Do I need to change IV while encrypting multiple packets in CFB mode?

More articles: