LOGBOOK

HELP

Quiz Entry - updated: 2026.06.25

Why does encryption NOT protect against modification of data?

Encryption (Verschlüsselung) only prevents unauthorized reading — it does NOT prevent an attacker from modifying the ciphertext, which will decrypt to corrupted or attacker-controlled plaintext.

A core principle of applied cryptography, memorably stated in German as "Verschlüsseln schützt nicht vor Veränderung!" — encryption does not protect against modification.

Why this matters:

  • An attacker can flip bits in ciphertext without knowing the plaintext
  • The recipient will decrypt the modified ciphertext to different, corrupted plaintext
  • In some cipher modes (like CTR or stream ciphers), bit-flipping attacks allow targeted modifications — e.g., changing "transfer $100" to "transfer $900"

What you need instead:

  • For integrity (detecting changes): use a hash function or MAC (Message Authentication Code)
  • For authenticity (proving origin + integrity): use a digital signature or HMAC
  • Best practice: Encrypt-then-MAC — encrypt first, then compute a MAC over the ciphertext

Tip: This is one of the most dangerous misconceptions in applied cryptography. Many real-world vulnerabilities (like padding oracle attacks) exploit the fact that developers assumed encryption provided integrity.

From Quiz: KRYPTOG / Introduction to Cryptology | Updated: Jun 25, 2026