> On Aug 1, 2018, at 9:31 AM, Michael Wojcik <michael.woj...@microfocus.com>
> wrote:
>
> CMS with an AEAD mode (such as AES128-GCM) ought to avoid the
> integrity-protection issue for the encrypted content, but not for the other
> parts of the message, I assume. (I'm no CMS expert so I may be missing
> something there.) And, of course, both sender and recipient would have to
> support that algorithm.
Not if you make it streaming. A streaming implementing will emit almost
the entirety of the decrypted message before checking integrity at the
end and finding out that some part of it (already output) was wrong.
--
Viktor.
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
- [openssl-users] openssl cms -decrypt failing ... Christian Böhme
- Re: [openssl-users] openssl cms -decrypt... Salz, Rich via openssl-users
- Re: [openssl-users] openssl cms -dec... Christian Böhme
- Re: [openssl-users] openssl cms ... Salz, Rich via openssl-users
- Re: [openssl-users] openssl cms ... Michael Wojcik
- Re: [openssl-users] openssl cms ... Jordan Brown
- Re: [openssl-users] openssl ... Viktor Dukhovni
- Re: [openssl-users] ope... Jakob Bohm
- Re: [openssl-users]... Viktor Dukhovni
- Re: [openssl-us... Michael Wojcik
- Re: [openssl-us... Viktor Dukhovni
- Re: [openssl-us... Jakob Bohm
- Re: [openssl-users] openssl ... Michael Wojcik
- Re: [openssl-users] ope... Christian Böhme
- Re: [openssl-users]... Michael Wojcik
- Re: [openssl-us... Christian Böhme
- Re: [openssl-us... Viktor Dukhovni
