Padding oracle
An attack that uses an error-message distinction (or a timing distinction) between 'padding invalid' and 'authentication invalid' to recover plaintext from CBC-mode ciphertext without the key.
An attack that uses an error-message distinction (or a timing distinction) between 'padding invalid' and 'authentication invalid' to recover plaintext from CBC-mode ciphertext without the key.
Practice with mock tests, learn from structured notes, and get your questions answered by a global forensic community, all in one place.