tags:

views:

361

answers:

4
+2  Q: 

Is it possible to use AES with an IV in ECB mode?

From http://php.net/manual/en/function.mcrypt-encrypt.php, I saw the following codes using AES with an IV in ECB mode,

<?php
    $iv_size = mcrypt_get_iv_size(MCRYPT_RIJNDAEL_256, MCRYPT_MODE_ECB);
    $iv = mcrypt_create_iv($iv_size, MCRYPT_RAND);
    $key = "This is a very secret key";
    $text = "Meet me at 11 o'clock behind the monument.";
    echo strlen($text) . "\n";

    $crypttext = mcrypt_encrypt(MCRYPT_RIJNDAEL_256, $key, $text, MCRYPT_MODE_ECB, $iv);
    echo strlen($crypttext) . "\n";
?>

But from wiki http://en.wikipedia.org/wiki/Block_cipher_modes_of_operation, it says ECB does not need an IV. Is it really possible to use AES with an IV in ECB mode? In this ECB mode, will the additional IV provide a little bit more security comparing to when it is not used?

+3  A: 

First of all, you wouldn't have anywhere to put this IV. ECB works by taking plaintext blocks one by one and encrypting them with the key to produce the corresponding ciphertexts. There is just no place to use the IV. This is how much the theory says.

I don't know the details of how mcrypt_encrypt works, but I would suspect that when using ECB it just does not use the IV. Try it out by encrypting in ECB providing different IVs. If the result is the same, the function just doesn't use IV.

Krystian  2009-11-24 13:01:46
You have suggested a good way to test it out if nobody knows the answer. Thank you for your reply.
bobo  2009-11-25 10:58:55
+5  A: 

There's no way to use an IV in ECB mode. This is kind of moot, however, as you should

Never Ever use ECB mode for Anything, Ever*.

In more general terms, you probably shouldn't be using crypto primitives directly, but rather using a crypto library like keyczar that abstracts away these sorts of decisions.

** Actually, there are some very specialized uses for ECB, such as 'secure' pseudorandom permutations - but you certainly shouldn't be using ECB for anything related to encrypting data.

Nick Johnson  2009-11-24 13:28:27
Spot on and well said!
zebrabox  2009-11-24 18:22:00
Thank you so much for your suggestion, keyczar is a useful one.
bobo  2009-11-25 10:56:49
ECB is also a valid choice for encrypting data less than 1 block (16 bytes) long.
PaulG  2009-11-27 13:42:24
I think that fits under the 'very specialized uses' umbrella. :)
Nick Johnson  2009-11-27 15:20:52
+3  A: 

ECB doesn't perform chaining between blocks so there is no way to use IV. mcrypt uses the same APi for all modules. The IV is simply ignored for ECB because the ECB module has following function defined as,

int _has_iv() { return 0; }
ZZ Coder  2009-11-24 13:30:46
I thought it really uses it. Thank you so much for your help.
bobo  2009-11-25 10:56:11
A: 

ECB is perfectly acceptable for Counter (CTR) Mode Encryption/Decryption: http://en.wikipedia.org/wiki/Block_cipher_modes_of_operation#Counter_.28CTR.29

NOTE that CTR Decryption is CTR Encryption.

swooby  2010-10-15 22:50:48

related questions

IDE suggestions: Eclipse IDE vs. Zend Studio ( confused )
MySQL/Apache Error in PHP MySQL query
Lightweight IDE for Linux
What PHP framework would you choose for a new application and why?
Why is my ternary expression not working?
How can I get at the matches when using preg_replace in PHP?
Mechanisms for tracking DB schema changes
Wordpress theme development offline tools
Using object property as default for method property
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
How do you debug PHP scripts?
PHP Variables passed by value or by reference?
Best way to implement unit testing in PHP
Connect PHP to an AS/400
Best way to access Exchange using PHP?
PHP Session Security
How do I access a remote form in php?
What's the best way to generate a tag cloud from an array? (using h1 through h6 for sizing)
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP
How would you access Object properties from within an object method?
Flat File Databases in PHP
Best way to allow plugins for a PHP application
Latest information on PHP upcoming releases