[openssl-users] Security properties of EVP_Seal*()

Nathaniel McCallum npmccallum at redhat.com
Tue Mar 3 19:59:35 UTC 2015


1. Does it provide a confounder? If no, this is easy to work around.

2. Does it provide a MAC? If no, this is more difficult. Since the 
actual key is never exposed by EVP_SealInit(), no MAC can be performed 
after the fact.

Nathaniel


More information about the openssl-users mailing list