From my understanding, TLS 1.0 can use CBC to encrypt knowledge. To take action, it creates one initialization vector (IV), after which makes use of the earlier ciphertext block because the IV for the following document. I made this diagram to depict my understanding about TLS 1.0:
Within the diagram above, the crimson arrow opens up TLS 1.Zero to the BEAST assault. As of TLS 1.1, this appears to be fastened by creating specific IVs:
[CBCATT] describes a selected plaintext assault on TLS that relies on
figuring out the IV for a document. Earlier variations of TLS [TLS1.0] used
the CBC residue of the earlier document because the IV and due to this fact enabled
this assault. This model makes use of an specific IV so as to defend
in opposition to this assault.
– RFC 4346
My query is: When and the place precisely are these specific IVs created? Are they created for every message like so (each messages are nonetheless being despatched inside the identical stream like above)?:
Or will we now have specific IVs for every document?:
… or is it neither of those?
I am comparatively unexperienced with all this so please forgive me if it is a foolish query.