ansaurus

Question

Answer 1

A:

You want to encrypt just a single 'int' ie q 32/64 bit number?
Then the easiest way is to just XOR it with a 32/64bit secret key.

Martin Beckett 2010-10-27 00:04:40

Alternately, XOR it with a smaller key, repeated over the span of the number.

Christian Mann 2010-10-27 00:08:08

What would the code for this look like, more or less?

Infinity 2010-10-27 00:08:49

be careful with straight xor because then with only 64 examples there's a chance the user can figure out the key.

Mike Axiak 2010-10-27 00:10:12

Also note that this makes it trivial to get the key if you have just one encrypted/decrypted pair.

sth 2010-10-27 00:16:06

@Mike: Xor with same length secret key is the definition of OTP. Of course you dont want to reuse the key.

knitti 2010-10-27 00:16:15

@Knitti: Given that the poster mentioned "crypto" and "n00b" you might want to explain OTP...I'm guessing you mean "one-time-pad".

Cameron Skinner 2010-10-27 00:21:00

Right, OTP=One Time Pad, and as @Spike mentioned: **Don't roll your own crypto**, there are many more things to do wrong than there are good free libraries out there (and there are some)

knitti 2010-10-27 00:24:05

Thanks guys, I updated the question. Maybe you can lead me in a better direction now

Infinity 2010-10-27 00:33:31

An OTP is totally unsuited to this situation.

Nick Johnson 2010-10-27 10:11:57

Answer 2

+2 A:

It depends how cryptographically secure you want to be. For not-very-secure (in the crypto sense - probably fine for everyday use if you don't really expect serious attack) then XOR with a fixed secret key will work. Just be aware that it will be vulnerable to some fairly basic cryptanalysis.

If you want real encryption, you'll probably have to use a stream cipher like RC4. You can grab 32 bits of keystream and XOR it with your value to encrypt it. As long as you get a new 32 bits of keystream for each value you'll be fine.

RC4 has some caveats, however, so read up on it first.

Block ciphers will not be your friend in this case as they all have block sizes of 64 bits or more. This means you need to pad your 32 bit integer to 64 bits and you'll get 64 bits back out...but you can't choose which 32 to keep. You won't be able to decrypt it with only half the bits. If you're happy to move to longs then you can use 3DES or Blowfish.

It all depends on exactly what you are encrypting and why, so it's hard to give a definitive answer. I hope this gives an idea of where to start, at least.

Cameron Skinner 2010-10-27 00:13:44

+1 for 64 bit block cipher. I have a code example of this here: http://stackoverflow.com/questions/3569783/query-string-parameter-obfuscation/3571165#3571165 Also a 64 bit integer represented as hex is only 16 characters long and should be just fine for use in a URL.

Lunatic Experimentalist 2010-10-27 02:45:14

Answer 3

+1 A:

You may look at this paper: Perfect Block Ciphers with Small Blocks and the slides of the presentation at the FSE 2007 conference.

The paper explains how to randomly select a permutation of n elements (e.g. the integer between 0 and n-1) which can be viewed as a cipher for this set of n elements.

Jcs 2010-10-27 05:46:19

Answer 4

+1 A:

The answer I posted to that question applies to yours as well: use a short block cipher. Assuming your identifiers are 64 bits, in fact, you can simply use the XTEA cipher as-is, with a 64 bit integer as the data block.

Nick Johnson 2010-10-27 10:14:35

That sounds good enough, and the code for XTEA looks simple enough to be easily ported to python. Thx I'll give this a shot

Infinity 2010-10-27 14:28:37

ansaurus

tags:

views:

answers:

Symmetric integer to integer encryption

related questions