Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Advanced Network Security - RWTH > Chapter 10 - CBC Mode padding oracle > Flashcards

Chapter 10 - CBC Mode padding oracle Flashcards

1
Q

What is a padding oracle attack and why does it work?

A
  • Use a padding oracle, to determine if padding is correct
  • Alter encrypted message
  • Leaks one bit of information
  • Repeat to decode message byte by byte
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is CBC-Mode of encryption?

A
  • Use IV as C0
  • XOR data with previous ciphertext C-1
  • Then encrypt
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

How does the standard padding work in CBC mode?

A
  • PKCS#5
  • Fill bytes with number of bytes to be padded (e.g. 5 x 0x05)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

How can this attack be used in TLS 1.2?

A
  • If “MAC then encrypt” is used
  • Server decrypts, then checks padding, then check MAC
  • In both cases a encrypted error message is sent back, but timing is different
  • Use timing to determine if padding is correct
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Advanced Network Security - RWTH (13 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions