alt Hacker NewsWould it, though? Either way you're operating in ECB mode with 2^32 or 2^64 values. Why is one more secure than the other?
EDIT: What I mean is you can do cypher = truncate(plain ^ AES(zero_extend(plain))).
Would it, though? Either way you're operating in ECB mode with 2^32 or 2^64 values. Why is one more secure than the other?
EDIT: What I mean is you can do cypher = truncate(plain ^ AES(zero_extend(plain))).
>EDIT: What I mean is you can do cypher = truncate(plain ^ AES(zero_extend(plain))).
How would you decrypt that though? You truncated 3/4ths of the AES output needed to decrypt it.
I thought you were suggesting this:
And in this case, since AES(key) does not depend on the plaintext, it would just be XOR by a constant.