John Kelsey wrote:
>
> -----BEGIN PGP SIGNED MESSAGE-----
>
> At 01:25 PM 5/7/00 -0400, dmolnar wrote:
>
> ...
> >An "indeterministic cryptosystem" is defined there as one in which
> >"equal plaintext blocks are encrypted to different ciphertext
> >blocks."
> ...
> > 1) is the term "indeterministic cryptosystem" formally
> > defined anywhere?
>
> I've seen the term ``nondeterministic cryptosystem'' or ``randomized
> cryptosystem,'' which I've understood to mean cryptosystems which can
> map one plaintext into some huge number of ciphertexts, all of which
> may be decrypted back to the original plaintext. There may be some
> nuances of definition I'm missing. Have you looked in the _Handbook
> of Applied Cryptography_ or in _Applied Cryptography_? If you look
> under the above two terms, I think you may find a formal definition.
> (_HAC_ is more likely to have a formal definition, I think.)
Wouldn't any block cipher in CBC/CFB/OFB mode with a random IV fit the
bill?
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html
