000026118 - How to use RC4 securely in RSA BSAFE

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000026118
Applies ToRSA BSAFE Crypto-C
RSA BSAFE Crypto-J
IssueHow to use RC4 securely in RSA BSAFE
CauseBecause RC4's encryption is an XOR between the message bytes and the pseudorandom stream generated from the key, the same key should not be used more than once. Otherwise, if some of the bytes on one input message are known (or easy to guess), an attacker would be able to determine some of the original message by XORing two sets of cipher bytes.
ResolutionYou should not use the same key in RC4 encryption multiple times.
Legacy Article ID6.0.3318129.2914371

Attachments

    Outcomes