Security and Cryptography
 
Forums: » Register « |  User CP |  Games |  Calendar |  Members |  FAQs |  Sitemap |  Support | 
User Name:
Password:
Remember me
IBM developerWorks
Go Back   Dev Shed ForumsSystem AdministrationSecurity and Cryptography
Reload this Page

Crypto Algorithm Evaluation - Requesting Evaluation of Randomized Encryption Format

Discuss Requesting Evaluation of Randomized Encryption Format in the Security and Cryptography forum on Dev Shed.
Requesting Evaluation of Randomized Encryption Format Security and Cryptography forum discussing issues related to coding, server applications, network protection, data protection, firewalls, ciphers and the like.

Reply
Add This Thread To:
  Del.icio.us   Digg   Google   Spurl   Blink   Furl   Simpy   Y! MyWeb 
« Previous Thread | Next Thread »  
Thread Tools Search this Thread Rate Thread Display Modes
 
Unread Dev Shed Forums Sponsor:
SlickEdit: Code in over 40 languages across 7 platforms. SlickEdit’s unmatched power, speed, and flexibility allows even the most accomplished developers to write better code faster. Download a free trial today!
  #1  
Old March 18th, 2008, 02:01 AM
wswartzendruber wswartzendruber is offline
Registered User
Dev Shed Newbie (0 - 499 posts)
  
Join Date: Mar 2008
Posts: 1 wswartzendruber User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: 8 m 25 sec
Reputation Power: 0
Crypto Algorithm Evaluation - Requesting Evaluation of Randomized Encryption Format
I have designed, over the past year, a randomized encryption format. I call it a format and not an algorithm because it's a container in which existing algorithms are plugged into. As I am travelling right now, I do not have the C# source code on hand.

The basic summary is that encryption and HMAC keys (and IVs) are randomly generated, concatenated, and encrypted into a header before the ciphertext. The plaintext is then encrypted with the randomly generated key/IV. HMAC support is included.

Is this container format already broken, or is it worth further review?
Reply With Quote
  #2  
Old March 18th, 2008, 12:21 PM
IamPatrick IamPatrick is offline
Contributing User
Dev Shed Newbie (0 - 499 posts)
  
Join Date: Mar 2007
Posts: 130 IamPatrick User rank is Corporal (100 - 500 Reputation Level)IamPatrick User rank is Corporal (100 - 500 Reputation Level)IamPatrick User rank is Corporal (100 - 500 Reputation Level)IamPatrick User rank is Corporal (100 - 500 Reputation Level) 
Time spent in forums: 1 Day 22 h 14 m 57 sec
Reputation Power: 3
The container isn't broken, this is how lots of public key crypto is performed, slow asym encryption of a random sym key with the data then encrypted with the quicker sym algo
Reply With Quote
  #3  
Old March 18th, 2008, 12:25 PM
B-Con's Avatar
B-Con B-Con is online now
Crypto-Con
Dev Shed God 4th Plane (6500 - 6999 posts)
  
Join Date: Apr 2004
Location: UC Davis
Posts: 6,633 B-Con User rank is Major General (70000 - 90000 Reputation Level)B-Con User rank is Major General (70000 - 90000 Reputation Level)B-Con User rank is Major General (70000 - 90000 Reputation Level)B-Con User rank is Major General (70000 - 90000 Reputation Level)B-Con User rank is Major General (70000 - 90000 Reputation Level)B-Con User rank is Major General (70000 - 90000 Reputation Level)B-Con User rank is Major General (70000 - 90000 Reputation Level)B-Con User rank is Major General (70000 - 90000 Reputation Level)B-Con User rank is Major General (70000 - 90000 Reputation Level)B-Con User rank is Major General (70000 - 90000 Reputation Level)B-Con User rank is Major General (70000 - 90000 Reputation Level)B-Con User rank is Major General (70000 - 90000 Reputation Level)B-Con User rank is Major General (70000 - 90000 Reputation Level)B-Con User rank is Major General (70000 - 90000 Reputation Level) 
Time spent in forums: 1 Month 5 Days 16 h 3 m 52 sec
Reputation Power: 762
This is a fairly common scheme for storing the extra HMAC and IV information along with the file. The scheme sounds common, likely the weakest point is the random number generation, since it's easy to mess that up.
__________________
- "Cryptographically secure linear feedback shift register based stream ciphers" -- a phrase that'll get any party started.
- Why know the ordinary when you can understand the extraordinary?


- Sponsor my caffeine addiction! (36.70 USD recieved so far -- Latest donor: Mark Foxvog)
Reply With Quote
Reply

Viewing: Dev Shed ForumsSystem AdministrationSecurity and Cryptography > Crypto Algorithm Evaluation - Requesting Evaluation of Randomized Encryption Format

« Previous Thread | Next Thread »

Thread Tools  Search this Thread 
Search this Thread:

Advanced Search
Display Modes  Rate This Thread 
Linear Mode Linear Mode
Rate This Thread:


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
View Your Warnings | New Posts | Latest News | Latest Threads | Shoutbox
Forum Jump


Forums: » Register « |  User CP |  Games |  Calendar |  Members |  FAQs |  Sitemap |  Support | 
  
 





© 2003-2008 by Developer Shed. All rights reserved. DS Cluster 2 hosted by Hostway