Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

I was working with some encryption and I decided to put a spin. To preface this

ID: 648301 • Letter: I

Question

I was working with some encryption and I decided to put a spin. To preface this would be used to encrypt multiple files.

You start with a key file generated from random data. For example you could generate a 288 byte key file. This file contains 9 sub-keys each 256-bits.

For each file to encrypt you securely randomly select a sub-key from the file. Then you create the header by append 28 bytes of random garbage bytes onto 4 bytes which is the index of the sub-key in the key file. You then use the first sub-key to encrypt this 32 byte header block.

The remainder of the file is encrypted using the sub-key and is placed after the header.

I was wondering if there are any obvious flaws to this approach. My nuonce is going to start at zero.

Would it also be even better to start the nouce using the first byte of the key?

Explanation / Answer

I would advise a different solution.

You either generate a master-key (or key set) or derive one from a user password (e.g. via PBKDF2 or SCrypt). For each file to encrypt you generate a random key (file key) and nonce ad-hoc, and encrypt the file with that key, using an AEAD scheme.

The random file key is encrypted with you master key and put at the beginning of the file. Preferable you should include that encrypted key as authenticated data within the AEAD scheme.

The steps:

Generate random file key and nonce
Encrypt file key with master key (using a key-wrap spec.)
Encrypt the plaintext file data with the file key and using it enc. form as part of the authenticated data (AEAD scheme)
Store nonce, enc. file key and encrypted data as the enc. file

Your solution is dangerous. Using the same nonce with the same key (you only have 9 or so) to encrypt different data will allow an attacker to retrieve information concerning the plaintext data.

Related Questions

I was wondering if there is such thing as a CD where youcan listen to biology bo
Question #1303
I was wondering if there is such thing as a CD where youcan listen to biology bo
Question #1304
I was wondering if there was another free piece of software that would be able t
Question #660450
I was wondering if these xbar, rbar, lcl, cl, and ucl, values were correct given
Question #3177188
I was wondering if you are able to help me with this project. This is my last se
Question #3765797
I was wondering if you can give me a help with biology homework An experiment is
Question #308697
I was wondering if you can help me out with the following questions? Thank you v
Question #2684602
I was wondering if you can help me out with the following questions? Thank you v
Question #2698869
Hire Me For All Your Tutoring Needs
Integrity-first tutoring: clear explanations, guidance, and feedback.
Drop an Email at
drjack9650@gmail.com
Chat Now And Get Quote

Navigate

Previous
I was working on this question an am having trouble figuring out the required fu
Next
I was writing this code: private static Expression<Func<Binding, bool>> ToExpres

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.