Comments on: A byte-oriented AES-256 implementation http://www.literatecode.com/2007/11/11/aes256/ Security, Programming and Beyond Thu, 09 Sep 2010 15:24:04 +0000 http://wordpress.org/?v=2.7.1 hourly 1 By: Matt H http://www.literatecode.com/2007/11/11/aes256/comment-page-2/#comment-15932 Matt H Tue, 07 Sep 2010 16:01:47 +0000 http://www.literatecode.com/2007/11/11/aes256/#comment-15932 Michael, that function builds the expanded key (stored circularly in ctx->key) from the encryption key. For AES-128, you'd want to modify it to just store the first 128-bits, since the key is only 128-bits long (unexpanded). E.g. uint8_t i = 16; while (i--) buf[i] ^= (cpk[i] = key[i]) .. Look at the guide in FIPS-197 for key expansion. You'll want to modify aes_expandEncKey and then modify the number of rounds (14 to 10). (Ilya, great implementation. I modified it to cache the expanded key with great ease :) ) Michael, that function builds the expanded key (stored circularly in ctx->key) from the encryption key. For AES-128, you’d want to modify it to just store the first 128-bits, since the key is only 128-bits long (unexpanded). E.g. uint8_t i = 16; while (i–) buf[i] ^= (cpk[i] = key[i]) .. Look at the guide in FIPS-197 for key expansion. You’ll want to modify aes_expandEncKey and then modify the number of rounds (14 to 10).

(Ilya, great implementation. I modified it to cache the expanded key with great ease :) )

]]> By: Ilya http://www.literatecode.com/2007/11/11/aes256/comment-page-2/#comment-15931 Ilya Wed, 01 Sep 2010 02:06:53 +0000 http://www.literatecode.com/2007/11/11/aes256/#comment-15931 Randy, I would recommend you to learn more about null-terminated strings and how printf works before doing any crypto. Buf size, number of null characters in your encrypted text and number of characters in printf output would be a very straightforward hint here. Randy, I would recommend you to learn more about null-terminated strings and how printf works before doing any crypto.

Buf size, number of null characters in your encrypted text and number of characters in printf output would be a very straightforward hint here.

]]> By: R http://www.literatecode.com/2007/11/11/aes256/comment-page-2/#comment-15930 R Tue, 31 Aug 2010 17:02:24 +0000 http://www.literatecode.com/2007/11/11/aes256/#comment-15930 Sorry here is the new demo.c #include #include #include "aes256.h" #define DUMP(s, i, buf, sz) {printf(s); \ for (i = 0; i < (sz);i++) \ printf("%02x ", buf[i]); \ printf("\n");} int main (int argc, char *argv[]) { aes256_context ctx; uint8_t key[32]; uint8_t buf[16], i; /* put a test vector */ //for (i = 0; i < sizeof(buf);i++) buf[i] = i * 16 + i; //for (i = 0; i < sizeof(key);i++) key[i] = i; strcpy(key,"My Key"); strcpy(buf,"Blah Blah"); DUMP("txt: ", i, buf, sizeof(buf)); DUMP("key: ", i, key, sizeof(key)); printf("Initial KEY: %s\n",key); printf("Initial BUF: %s\n",buf); printf("---\n"); aes256_init(&ctx, key); aes256_encrypt_ecb(&ctx, buf); printf("Enc BUF: %s\n",buf); DUMP("enc: ", i, buf, sizeof(buf)); printf("tst: 8e a2 b7 ca 51 67 45 bf ea fc 49 90 4b 49 60 89\n"); aes256_init(&ctx, key); aes256_decrypt_ecb(&ctx, buf); DUMP("dec: ", i, buf, sizeof(buf)); printf("Dec KEY: %s\n",key); printf("Dec BUF: %s\n",buf); aes256_done(&ctx); return 0; } /* main */ Sorry here is the new demo.c

#include
#include
#include “aes256.h”

#define DUMP(s, i, buf, sz) {printf(s); \
for (i = 0; i < (sz);i++) \
printf(”%02x “, buf[i]); \
printf(”\n”);}

int main (int argc, char *argv[])
{
aes256_context ctx;
uint8_t key[32];
uint8_t buf[16], i;

/* put a test vector */
//for (i = 0; i < sizeof(buf);i++) buf[i] = i * 16 + i;
//for (i = 0; i < sizeof(key);i++) key[i] = i;

strcpy(key,”My Key”);
strcpy(buf,”Blah Blah”);

DUMP(”txt: “, i, buf, sizeof(buf));
DUMP(”key: “, i, key, sizeof(key));

printf(”Initial KEY: %s\n”,key);
printf(”Initial BUF: %s\n”,buf);
printf(”—\n”);

aes256_init(&ctx, key);
aes256_encrypt_ecb(&ctx, buf);

printf(”Enc BUF: %s\n”,buf);

DUMP(”enc: “, i, buf, sizeof(buf));
printf(”tst: 8e a2 b7 ca 51 67 45 bf ea fc 49 90 4b 49 60 89\n”);

aes256_init(&ctx, key);
aes256_decrypt_ecb(&ctx, buf);
DUMP(”dec: “, i, buf, sizeof(buf));
printf(”Dec KEY: %s\n”,key);
printf(”Dec BUF: %s\n”,buf);

aes256_done(&ctx);

return 0;
} /* main */

]]> By: R http://www.literatecode.com/2007/11/11/aes256/comment-page-2/#comment-15929 R Tue, 31 Aug 2010 16:59:06 +0000 http://www.literatecode.com/2007/11/11/aes256/#comment-15929 Made the following changes to the demo.c file..... /* put a test vector */ //for (i = 0; i < sizeof(buf);i++) buf[i] = i * 16 + i; //for (i = 0; i aes_demo txt: 42 6c 61 68 20 42 6c 61 68 00 cc cc cc cc cc cc key: 4d 79 20 4b 65 79 00 cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc Initial KEY: My Key Initial BUF: Blah Blah --- Enc BUF: ^¥sεΓ%.┼0oHsë╘3╢╠╠╠╠╠╠╠╠My Key <----- Opps! enc: 5e 9d 73 ee e2 25 2e c5 30 6f 48 73 89 d4 33 b6 tst: 8e a2 b7 ca 51 67 45 bf ea fc 49 90 4b 49 60 89 dec: 42 6c 61 68 20 42 6c 61 68 00 cc cc cc cc cc cc Dec KEY: My Key Dec BUF: Blah Blah Note that the Key is appended unencrypted to the encrypted buffer. Made the following changes to the demo.c file…..

/* put a test vector */
//for (i = 0; i < sizeof(buf);i++) buf[i] = i * 16 + i;
//for (i = 0; i aes_demo
txt: 42 6c 61 68 20 42 6c 61 68 00 cc cc cc cc cc cc
key: 4d 79 20 4b 65 79 00 cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc
cc cc cc cc cc cc cc
Initial KEY: My Key
Initial BUF: Blah Blah

Enc BUF: ^¥sεΓ%.┼0oHsë╘3╢╠╠╠╠╠╠╠╠My Key <—– Opps!
enc: 5e 9d 73 ee e2 25 2e c5 30 6f 48 73 89 d4 33 b6
tst: 8e a2 b7 ca 51 67 45 bf ea fc 49 90 4b 49 60 89
dec: 42 6c 61 68 20 42 6c 61 68 00 cc cc cc cc cc cc
Dec KEY: My Key
Dec BUF: Blah Blah

Note that the Key is appended unencrypted to the encrypted buffer.

]]> By: Anonymous http://www.literatecode.com/2007/11/11/aes256/comment-page-2/#comment-15928 Anonymous Fri, 06 Aug 2010 18:35:21 +0000 http://www.literatecode.com/2007/11/11/aes256/#comment-15928 Hi, thanks for this wonderful job. To encrypt several blocks, I was looking for a simple XTS implementation. I have found the Gladman's, but it seems very difficult to adapt it to work with your code. Do you know a simpler implementation of XTS ? Hi, thanks for this wonderful job.

To encrypt several blocks, I was looking for a simple XTS implementation. I have found the Gladman’s, but it seems very difficult to adapt it to work with your code.
Do you know a simpler implementation of XTS ?

]]> By: priya http://www.literatecode.com/2007/11/11/aes256/comment-page-2/#comment-15925 priya Fri, 23 Jul 2010 11:24:36 +0000 http://www.literatecode.com/2007/11/11/aes256/#comment-15925 I want to implement this on hardware. how can i do it? I want to implement this on hardware. how can i do it?

]]> By: priya http://www.literatecode.com/2007/11/11/aes256/comment-page-1/#comment-15924 priya Fri, 23 Jul 2010 11:13:19 +0000 http://www.literatecode.com/2007/11/11/aes256/#comment-15924 hello. Can i use this code for 128 bits? hello. Can i use this code for 128 bits?

]]> By: Chris http://www.literatecode.com/2007/11/11/aes256/comment-page-1/#comment-15919 Chris Wed, 09 Jun 2010 20:27:25 +0000 http://www.literatecode.com/2007/11/11/aes256/#comment-15919 Back when I was looking for it I finally found an implementation. I think it was this one: http://www.hoozi.com/post/829n1/advanced-encryption-standard-aes-implementation-in-c-c-with-comments-part-1-encryption Back when I was looking for it I finally found an implementation.
I think it was this one:
http://www.hoozi.com/post/829n1/advanced-encryption-standard-aes-implementation-in-c-c-with-comments-part-1-encryption

]]> By: Anonymous http://www.literatecode.com/2007/11/11/aes256/comment-page-1/#comment-15918 Anonymous Wed, 09 Jun 2010 08:30:12 +0000 http://www.literatecode.com/2007/11/11/aes256/#comment-15918 Hi, Just wondering how the aes_addRoundKey_cpy fits into the standard? This doesn't appear in any of the docs I've read, but it appears to be (from what I can ascertain) to be the expanded key round, which helps avoid an extra lookup table. But, I am trying to fix the failed attempt at porting this to AES-128 and I can't figure out how I should change that. I tried the obvious of changing it to: <code> void aes_addRoundKey_cpy(uint8_t *buf, uint8_t *key, uint8_t *cpk) { register uint8_t i = 8; while (i--) buf[i] ^= (cpk[i] = key[i]), cpk[8+i] = key[8 + i]; } /* aes_addRoundKey_cpy */ </code> but it either wasn't right, or there's more to it. (I have changed the number of rounds to 10) but debugging encryption algorithms tends to be a little difficult! Any pointers in the right direction would be greatly appreciated! Thanks in advance, Michael (yes, the same one as before) Hi,

Just wondering how the aes_addRoundKey_cpy fits into the standard?

This doesn’t appear in any of the docs I’ve read, but it appears to be (from what I can ascertain) to be the expanded key round, which helps avoid an extra lookup table.

But, I am trying to fix the failed attempt at porting this to AES-128 and I can’t figure out how I should change that. I tried the obvious of changing it to:


void aes_addRoundKey_cpy(uint8_t *buf, uint8_t *key, uint8_t *cpk)
{
register uint8_t i = 8;

while (i--) buf[i] ^= (cpk[i] = key[i]), cpk[8+i] = key[8 + i];

} /* aes_addRoundKey_cpy */

but it either wasn’t right, or there’s more to it. (I have changed the number of rounds to 10) but debugging encryption algorithms tends to be a little difficult!

Any pointers in the right direction would be greatly appreciated!

Thanks in advance,
Michael (yes, the same one as before)

]]> By: Michael Malone http://www.literatecode.com/2007/11/11/aes256/comment-page-1/#comment-15917 Michael Malone Wed, 09 Jun 2010 01:16:16 +0000 http://www.literatecode.com/2007/11/11/aes256/#comment-15917 Um, guys - the 128bit version is substantially broken. The add_RoundKey modifications you made, mean the function there does nothing. The plaintext and cyphertext match at the end, because it never got encrypted!! The 256bit version works like a charm, however. I could compile it straight away without warnings on -Wextra and -Wall! I was really looking for a 128bit version, but due to time constraints, maybe 256 will do. Um, guys - the 128bit version is substantially broken. The add_RoundKey modifications you made, mean the function there does nothing. The plaintext and cyphertext match at the end, because it never got encrypted!! The 256bit version works like a charm, however. I could compile it straight away without warnings on -Wextra and -Wall! I was really looking for a 128bit version, but due to time constraints, maybe 256 will do.

]]>