Is ccrypt AES 256 bit crypto secure enough? Post: 302887083

Sponsored Content

Special Forums Cybersecurity Is ccrypt AES 256 bit crypto secure enough? Post 302887083 by Neo on Wednesday 5th of February 2014 01:53:42 PM

02-05-2014

Administrator

True. You are right... those longer keys are not really for symmetric crypto. I will look more into gpg (gpg - OpenPGP encryption and signing tool man page):

Code:

neo@www:~# aptitude search gpg
p   gpgsm                                                    - GNU privacy guard - S/MIME version                                
p   gpgv                                                     - GNU privacy guard - signature verification tool                   
p   kgpg                                                     - graphical front end for GNU Privacy Guard                         
p   libcrypt-gpg-perl                                        - An Object Oriented Interface to GnuPG                             
p   libgpg-error-dev                                         - library for common error values and messages in GnuPG components (
p   libgpg-error0                                            - library for common error values and messages in GnuPG components  
p   libgpgme++2                                              - c++ wrapper library for gpgme                                     
p   libgpgme-ruby                                            - GPGME bindings for the Ruby language                              
p   libgpgme-ruby1.8                                         - GPGME bindings for the Ruby language                              
p   libgpgme-ruby1.9.1                                       - GPGME bindings for the Ruby language                              
p   libgpgme11                                               - GPGME - GnuPG Made Easy                                           
p   libgpgme11-dev                                           - GPGME - GnuPG Made Easy                                           
p   libqgpgme1                                               - library for GpgME++ integration with Qt                           
p   pgpgpg                                                   - Wrapper for using GnuPG in programs designed for PGP              
p   php-crypt-gpg                                            - PHP PEAR module for encrypting and decrypting with GnuPG          
p   python-gpgme                                             - python wrapper for the GPGME library                              
p   python-gpgme-dbg                                         - python wrapper for the GPGME library (debug extension)            
v   python2.6-gpgme                                          -                                                                   
v   python2.6-gpgme                                          -                                                                   
v   python2.6-gpgme-dbg                                      -                                                                   
v   python2.6-gpgme-dbg                                      -                                                                   
v   python2.7-gpgme                                          -                                                                   
v   python2.7-gpgme                                          -                                                                   
v   python2.7-gpgme-dbg                                      -                                                                   
v   python2.7-gpgme-dbg                                      -

Thanks!

Neo

View Public Profile for Neo

Visit Neo's homepage!

Find all posts by Neo

5 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

encrypting file system using AES 256 bit

Experts, I am trying to encrypt my filesystem using the AES 256 bit type of encryption. I am using FreeBSD 5.4 and need to encrypt one of the mounted points. Does anybody have any good idea of how to do it? Is there any documentation about encrypting the disk partition as this method is more...

2. Programming

AES encryption

Hi, Any body can please point me to source code for implementing AES encryption in CTR mode i.e RFC 3686 (AES-CTR).I did googling but no good results.

3. Programming

JAVA AES keylength exception

I am developing a JAVA application that must encrypt its data. On my development machine, I can use a 256 bit key with no problem. A test machine throws an exception complaining about an illegal key length. The test machine is using JRE 1.6u21. Does anyone know where I can get a version of the JRE...

4. UNIX for Dummies Questions & Answers

Using sed with special characters produced from crypto

Hey there, I'm facing some weird issues with sed when trying to do substitution in a text file with the content of some environment variables. Those variables are used to store crypted (3DES) info with much special characters and that's where the problem starts. I've already tried to use both...

5. Programming

Publish and Subscribe to AES-256 Encrypted MQTT Messages to Node-RED from PHP Scripts

Various Node-Red crypto modules do not work with PHP, so to send an encrypted message from a PHP script (in this case from a Ubuntu server) to Node-RED we need our own code. After a few hours of searching, testing various libs, more testing and debugging, I got this PHP to Node-RED code...

LEARN ABOUT OPENSOLARIS

aes

aes(n)                                                  Advanced Encryption Standard (AES)                                                  aes(n)

__________________________________________________________________________________________________________________________________________________

NAME

       aes - Implementation of the AES block cipher

SYNOPSIS

       package require Tcl  8.2

       package require aes  ?1.0.1?

       ::aes::aes  ?-mode  [ecb|cbc]?  ?-dir  [encrypt|decrypt]? -key keydata ?-iv vector? ?-hex? ?-out channel? ?-chunksize size? [ -in channel |
       data ]

       ::aes::Init mode keydata iv

       ::aes::Encrypt Key data

       ::aes::Decrypt Key data

       ::aes::Reset Key iv

       ::aes::Final Key

_________________________________________________________________

DESCRIPTION

       This is an implementation in Tcl of the Advanced Encryption Standard (AES) as published by the U.S. National  Institute  of  Standards  and
       Technology  [1].  AES  is a 128-bit block cipher with a variable key size of 128, 192 or 256 bits. This implementation supports ECB and CBC
       modes.

COMMANDS

       ::aes::aes ?-mode [ecb|cbc]? ?-dir [encrypt|decrypt]? -key keydata ?-iv vector? ?-hex? ?-out channel? ?-chunksize size?  [  -in  channel  |
       data ]
              Perform  the  aes algorithm on either the data provided by the argument or on the data read from the -in channel. If an -out channel
              is given then the result will be written to this channel.

              The -key option must be given. This parameter takes a binary string of either 16, 24 or 32 bytes in length and is used  to  generate
              the key schedule.

              The  -mode  and -dir options are optional and default to cbc mode and encrypt respectively. The initialization vector -iv takes a 16
              byte binary argument which defaults to all zeros.  See MODES OF OPERATION for more about available modes and their uses.

              AES is a 128-bit block cipher. This means that the data must be provided in units that are a multiple of 16 bytes.

PROGRAMMING INTERFACE

       Internal state is maintained in an opaque structure that is returned from the Init function. In ECB mode the state is not affected  by  the
       input  but  for  CBC mode some input dependent state is maintained and may be reset by calling the Reset function with a new initialization
       vector value.

       ::aes::Init mode keydata iv
              Construct a new AES key schedule using the specified key data and the given initialization vector. The initialization vector is  not
              used with ECB mode but is important for CBC mode.  See MODES OF OPERATION for details about cipher modes.

       ::aes::Encrypt Key data
              Use  a prepared key acquired by calling Init to encrypt the provided data. The data argument should be a binary array that is a mul-
              tiple of the AES block size of 16 bytes. The result is a binary array the same size as the input of encrypted data.

       ::aes::Decrypt Key data
              Decipher data using the key. Note that the same key may be used to encrypt and decrypt data provided that the initialization  vector
              is reset appropriately for CBC mode.

       ::aes::Reset Key iv
              Reset  the  initialization  vector. This permits the programmer to re-use a key and avoid the cost of re-generating the key schedule
              where the same key data is being used multiple times.

       ::aes::Final Key
              This should be called to clean up resources associated with Key.  Once this function has been called the key may not be used again.

MODES OF OPERATION

       Electronic Code Book (ECB)
              ECB is the basic mode of all block ciphers. Each block is encrypted independently and so identical plain text will produce identical
              output  when  encrypted with the same key. Any encryption errors will only affect a single block however this is vulnerable to known
              plaintext attacks.

       Cipher Block Chaining (CBC)
              CBC mode uses the output of the last block encryption to affect the current block. An initialization vector of the same size as  the
              cipher  block  size  is  used  to handle the first block. The initialization vector should be chosen randomly and transmitted as the
              first block of the output. Errors in encryption affect the current block and the next block after  which  the  cipher  will  correct
              itself. CBC is the most commonly used mode in software encryption.

EXAMPLES

       % set nil_block [string repeat \0 16]
       % aes::aes -hex -mode cbc -dir encrypt -key $nil_block $nil_block
       66e94bd4ef8a2c3b884cfa59ca342b2e

       set Key [aes::Init cbc $sixteen_bytes_key_data $sixteen_byte_iv]
       append ciphertext [aes::Encrypt $Key $plaintext]
       append ciphertext [aes::Encrypt $Key $additional_plaintext]
       aes::Final $Key

REFERENCES

       [1]    "Advanced  Encryption  Standard",  Federal  Information  Processing  Standards  Publication 197, 2001 (http://csrc.nist.gov/publica-
              tions/fips/fips197/fips-197.pdf)

AUTHORS

       Thorsten Schloermann, Pat Thoyts

BUGS, IDEAS, FEEDBACK
       This document, and the package it describes, will undoubtedly contain bugs and other problems.  Please report such in the category  aes  of
       the  Tcllib  SF  Trackers [http://sourceforge.net/tracker/?group_id=12883].  Please also report any ideas for enhancements you may have for
       either package and/or documentation.

SEE ALSO

       blowfish(n), des(n), md5(n), sha1(n)

KEYWORDS

       aes, block cipher, data integrity, encryption, security

COPYRIGHT

       Copyright (c) 2005, Pat Thoyts <patthoyts@users.sourceforge.net>

aes                                                                    1.0.1                                                                aes(n)