VariantDraft

CWE-329Generation of Predictable IV with CBC Mode

Category: other

Description

The product generates and uses a predictable initialization Vector (IV) with Cipher Block Chaining (CBC) Mode, which causes algorithms to be susceptible to dictionary attacks when they are encrypted under the same key.

Common consequences· 1

  • Confidentiality — Read Application Data
    If the IV is not properly initialized, data that is encrypted can be compromised and leak information.

Potential mitigations· 1

  • [Implementation]NIST recommends two methods of generating unpredictable IVs for CBC mode [REF-1172]. The first is to generate the IV randomly. The second method is to encrypt a nonce with the same key and cipher to be used to encrypt the plaintext. In this case the nonce must be unique but can be predictable, since the block cipher will act as a pseudo random permutation.

References

  1. https://cwe.mitre.org/data/definitions/329.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Generation of Weak Initialization Vector (IV)
CWE
Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
CWE
Use of Weak Hash
CWE
Use of RSA Algorithm without OAEP
CWE
Inadequate Encryption Strength
CWE
Use of Insufficiently Random Values
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.