Not Using a Random IV with CBC Mode

From Guidance Share

Contents 1 Description 2 Applies To 3 Example 4 Impact 5 Vulnerabilities 6 Countermeasures 7 Vulnerability Patterns 8 How Tos

Description

Not using a random initialization vector with Cipher Block Chaining (CBC) Mode causes algorithms to be susceptible to dictionary attacks.

Applies To

• Languages: Any
• Operating platforms: Any

Example

The following example uses a non-random IV:

#include <openssl/evp.h>
EVP_CIPHER_CTX ctx;
char key[EVP_MAX_KEY_LENGTH];
char iv[EVP_MAX_IV_LENGTH];
RAND_bytes(key, b);
memset(iv,0,EVP_MAX_IV_LENGTH);
EVP_EncryptInit(&ctx,EVP_bf_cbc(), key,iv);

Impact

• Confidentiality: If the CBC is not properly initialized, data which is encrypted can be compromised and therefore be read.
• Integrity: If the CBC is not properly initialized, encrypted data could be tampered with in transfer or on disk.
• Accountability: Cryptographic based authentication systems could be defeated.

Vulnerabilities

• Failure to properly initialize CBC with a random IV.

Countermeasures

• Integrity: It is important to properly initialize CBC operating block ciphers with a random IV or there value is lost.

Vulnerability Patterns

• Not Using a Random IV with CBC Mode Vulnerability Pattern

How Tos

• How To Recognize Not Using a Random IV with CBC Mode Vulnerabilities
• How To Protect from Not Using a Random IV with CBC Mode
• How To Perform an Attack Based On Not Using a Random IV with CBC Mode