Encrypt/Decrypt with AES | ansaurus

tags:

aes
crypto++

views:

79

answers:

1

+1 Q:

Encrypt/Decrypt with AES

I'm writing small program to encrypt/decrypt files using AES. I'm using Cryptopp library.

I need help to understand some things.

When I'm encrypting file I should write IV at the beginning of file to decrypt it later?

I wan't to check password given do decrypt file was correct. Should I:

put some string at beginning of file (ex. TRUE) before it's encrypted. After decryption check it.
Check MD5 of file before encryption. Put it at beginning of encrypted file. Read MD5 before decryption, decrypt file, check MD5 of decrypted file and compare them.

A:

Writing the IV at the beginning of the file is fine. Appending to the end is another option.

Do not put a static string into the plaintext: ENIGMA transcripts were more easily broken for very similar reasons, and the zip format makes brute-forcing passwords very easy for this identical mistake.

The md5 approach sounds tolerable; but hmac-sha256 would provide significantly stronger integrity claims. (I think you could even re-use the AES key or the IV for hmac-sha256, but I'm not positive of its safety.)

sarnold 2010-08-04 11:58:20

related questions

Mimic AES_ENCRYPT and AES_DECRYPT functions in Ruby

AES in ASP.NET with VB.NET

AES encryption of 16 bytes without salt

Why can't C# decrypt the output from Perl's Crypt::Rijndael?

AES interoperability between .Net and iPhone?

Decrypting RijndaelManaged Encrypted strings with CryptDecrypt

Misunderstanding MixColumns step

Best way to implement an SFTP server solution?

Java Cipher - AES Padding Problem

Encryption algorithm/library for .NET 2.0 + C++

What is the algorithm identifier when using AES in CBC mode with ISO 10126 padding inside of PKCS#7?

Converting the Rijndaelmanged() byte[] to a string

What do Streams do when implementing AES encrption in .NET?

How to store the AES Rijndael generated Key to the database?

RijndaelManaged supports 128-256 bit key, what key size the default constructor generator?

c# implementations of AES encryption

AES encryption, what are public and private keys?

How to encrypt in VBScript using AES?

AES encryption, sample code

Which AES library to use in Ruby/Python?

IPSec AES 256 encryption in Windows XP with Service Pack 3?

Does IE6 Support AES 256 bit encryption?

Does AES (128 or 256) encryption expand the data? If so, by how much?

Strong SSL with Tomcat 6

.NET's SslStream is always negotiating to the least secure cipher I have. How can I change this?