AES

[Jean-Luc Cooke]

Ah, ha!

Very well.  So I will assume that only the test values in the FIPS-197 PDF
are valid.  Got it.  Thank you.

JLC

On Sat, Oct 16, 2004 at 05:52:26PM -0400, Morris Dworkin wrote:
> Dear Mr. Cooke,
> 
> The first link that you referenced is in the part of the NIST site that is
> provided only as a historical record and is clearly marked as such,
> along with a caution about the accuracy of the material.  I heard
> that the submitters' test values were incorrect, but we are not
> maintaining that portion of the site.
> 
> As far as I know, the test values in FIPS 197 are correct.
> 
> Regards,
> 
> Morris Dworkin
> 
> 
> 
> At 04:08 PM 10/16/2004 -0400, you wrote:
> >I see something of a dis continuity with the AES page at
> >
> >http://csrc.nist.gov/CryptoToolkit/aes/rijndael/
> >
> >The FIPS linked there gives test vectors which contradict the Test Values 
> >ZIP
> >file also linked there.
> >
> >PDF of FIPS-197:
> >  http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf
> >Test Values:
> >  http://csrc.nist.gov/CryptoToolkit/aes/rijndael/rijndael-vals.zip
> >
> >FIPS-197's first test is:
> >KEY=000102030405060708090A0B0C0D0E0F
> >PT=00112233445566778899AABBCCDDEEFF
> >CT=69C4E0D86A7B0430D8CDB78070B4C55A
> >
> >ecm_e_m.txt's first test is:
> >KEY=00000000000000000000000000000000
> >PT=00000000000000000000000000000000
> >CT=C34C052CC0DA8D73451AFE5F03BE297F
> >
> >cbc_e_m.txt's first test is:
> >KEY=00000000000000000000000000000000
> >IV=00000000000000000000000000000000
> >PT=00000000000000000000000000000000
> >CT=8A05FC5E095AF4848A08D328D3688E3D
> >
> >If CBC is in-fact:
> > CT = AES128(KEY, PT xor IV)
> >then both cbc_e_m.txt and ecb_e_m.txt's first tests should encrypt to the
> >same thing... and to the same value as the FIPS-197 PDF.
> >
> >How can these differ?  I am writting more modes of operation for the Linux
> >Kernel's Cryptographi API and would like to use the full set of Test Values
> >linked on the main AES page @ NIST.
> >
> >Cheers and Thank you
> >
> >JLC
>