tags:

views:

113

answers:

1
+2  Q: 

Cipher Text Stealing Algorithms - Which one is correct?

There are two algorithms presented in the web.

In both the algorithms, the first part is the same...

 1. Pad the last partial plaintext block
    with 0.

 2. Encrypt the whole padded plaintext
    using the standard CBC mode.

 3. Swap the last two ciphertext blocks.

 4. Truncate the ciphertext to the length of the original plaintext

However for decryption, there are two methods... I really dunno which one is correct This one was taken from here

1. If the ciphertext length is not a multiple of the block size, say it is n bits short, then pad it with the last n bits of the block cipher decryption of the last full ciphertext block.
2. Swap the last two ciphertext blocks.
3. Decrypt the ciphertext using the Cipher Block Chaining mode.
4. Truncate the plaintext to the length of the original ciphertext.

Is this the correct decryption procedure? Will this reverse what happened in the first encryption part?

I am confused as the Wikipedia Article has the same encryption procedure but the decryption is different

Can a cryptographic expert shed some light on me? Thanx a lot in advance :)

+2  A: 

The two descriptions seem equivalent. Steps 1 and 2 of the wikipedia article are equivalent to the first step of the other article. Wikipedia is a bit more formal.

deinst  2010-08-04 17:04:43
Thank deinst. But Wikipedia says to decrypt using zeros as IV. But the other article doesn't seem to mention anything about using 0's as the IV. Am i missing something important here?
Ranhiru Cooray  2010-08-04 17:12:01
You will note that CBC decryption with an initial vector of 0 is identical to block cipher decryption. Note the preceding paragraph on wikipedia, particularly : "For CBC ciphertext stealing, there is a clever (but opaque) method of implementing the described ciphertext stealing process using a standard CBC interface."The section before that has a 7 step procedure, more in line with the other description.
deinst  2010-08-04 17:50:32

related questions

How do I find the Excel column name that corresponds to a given integer?
Calculating a cutting list with the least amount of off cut waste.
Red-Black Trees
How to maintain a recursive invariant in a MySQL database?
RFC calculation in Java need help with algorithm
Best word wrap algorithm?
How do you separate game logic from display?
Most effective way for float and double comparison
Choosing a multiplier for a (string) hash function
Optimizing a search algorithm in C
Find the best combination from a given set of multiple sets
What "already invented" algorithm did you invent?
Designing a Calendar system like Google Calendar
How to overload std::swap()
Looking for algorithm that reverses the sprintf() function output
Merge Sort a Linked List
Puzzle: Find largest rectangle (maximal rectangle problem)
graph serialization
Peak detection of measured signal
Big O, how do you calculate/approximate it?
What problems can be solved, or tackled more easily, using graphs and trees?
Followup: "Sorting" colors by distinctiveness
Efficiently get sorted sums of a sorted list
Function for creating color wheels
Fastest way to get value of pi