Why does a bad password cause “Padding is invalid and cannot be removed”?

by

Although this have been already answered I think it would be a good idea to explain why it is to be expected.

A padding scheme is usually applied because most cryptographic filters are not semantically secure and to prevent some forms of cryptoatacks. For example, usually in RSA the OAEP padding scheme is used which prevents some sorts of attacks (such as a chosen plaintext attack or blinding).

A padding scheme appends some (usually) random garbage to the message m before the message is sent. In the OAEP method, for example, two Oracles are used (this is a simplistic explanation):

  1. Given the size of the modulus you padd k1 bits with 0 and k0 bits with a random number.
  2. Then by applying some transformation to the message you obtain the padded message wich is encrypted and sent.

That provides you with a randomization for the messages and with a way to test if the message is garbage or not. As the padding scheme is reversible, when you decrypt the message whereas you can’t say anything about the integrity of the message itself you can, in fact, make some assertion about the padding and thus you can know if the message has been correctly decrypted or you’re doing something wrong (i.e someone has tampered with the message or you’re using the wrong key)

More Related Contents:

  1. Catch multiple exceptions at once?
  2. Is there a difference between “throw” and “throw ex”?
  3. How to handle AccessViolationException
  4. WPF global exception handler [duplicate]
  5. Exception messages in English?
  6. Cannot delete directory with Directory.Delete(path, true)
  7. TAP global exception handler
  8. Puzzling Enumerable.Cast InvalidCastException
  9. Can you catch a native exception in C# code?
  10. Avoiding null reference exceptions
  11. OpenSSL encryption using .NET classes
  12. Is this a bad practice to catch a non-specific exception such as System.Exception? Why?
  13. Programmatically encrypting a config-file in .NET
  14. How to avoid a System.Runtime.InteropServices.COMException?
  15. Problem Updating to .Net 6 – Encrypting String
  16. InvalidProgramException / Common Language Runtime detected an invalid program
  17. What is ApplicationException for in .NET?
  18. How to prevent an exception in a background thread from terminating an application?
  19. Show line number in exception handling
  20. How to check for valid xml in string input before calling .LoadXml()
  21. Why Create Custom Exceptions? [closed]
  22. How do I determine the HResult for a System.IO.IOException?
  23. Catch Application Exceptions in a Windows Forms Application
  24. CryptographicException “Key not valid for use in specified state.” while trying to export RSAParameters of a X509 private key
  25. Finding the cause of System.AccessViolationException
  26. Encrypt SQLite database in C#
  27. Encryption compatible between Android and C#
  28. AES encryption on large files
  29. Which types of exception not to catch?
  30. Dynamically changing Textbox’s AutoComplete List causes AccessViolationException, any advice?

Leave a Comment