ansaurus

Question

Calculate maximum size for encypted data

Answer 1

+1 A:

Yes. Round up your input size to the nearest multiple of your block size (e.g. 128 / 8 = 16 bytes).

extraBytesNeeded = (16 - (inputSize % 16)) % 16;
maxSize = inputSize + extraBytesNeeded.

Jeff Moser 2009-06-17 13:03:41

Careful with the second equation, not every language handles the modulo of a negative number the way you are assuming. C/C++ for example, will give you the wrong answer as (-a % b) == -(a % b) in those languages.

Naaff 2009-06-17 13:33:43

Good point. I deleted the second one to avoid confusion.

Jeff Moser 2009-06-17 14:18:29

Answer 2

A:

Jeff's answer is almost correct, except that PKCS7 will always add padding to the message, even if the message exactly fits inside an integral number of blocks. Also, don't forget that if using a random IV that the IV has to be stored too. The corrected formula for the length of a PKCS7 padded message is:

extraBytesNeeded = (16 - (inputSize % 16)); // whole block of padding if input fits exactly
maxSize = inputSize + extraBytesNeeded + IVbytes;

Theran 2009-06-19 02:30:22

Answer 3

+1 A:

SwDevMan81 2009-06-23 22:06:36

ansaurus

tags:

views:

answers:

Calculate maximum size for encypted data

related questions