Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

In a project that I\'m currently working on, we are encrypting some data using A

ID: 651108 • Letter: I

Question

In a project that I'm currently working on, we are encrypting some data using AES with ECB mode in a database. Each piece of data being encrypted is very small, no more than 10 characters long.

Very importantly, each entry of that database is encrypted using a different and unique key. Would we gain any security if we switched to AES with CBC mode in this specific scenario?

Also, imagine now that we use AES in ECB mode to encrypt the data in the database, but we now use the same key to encrypt every single entry. If an attacker breaks into our database and steals our data, how many entries would he need to exploit ECB weaknesses and be able to decrypt the information?

For this last scenario, I guess that what I want to find out is if an attacker can decrypt some AES ECB encrypted data if he only has, let's say, around 10 encrypted messages.

Thanks!

Explanation / Answer

The trouble with ECB begins when you encrypt two blocks with the same key. If every slot in your system has its own key which is ever used to encrypt only one block (which means that when you modify one of your pieces of data, you also use a new key), then there is no problem with ECB. If you reuse a key, if only time-wise (you update an entry with a new value, which is encrypted with the same key than the previous value), then you hit the ECB issues.

However, this begs the following question: if you can securely store that many keys, why would you use AES anyway ? You could store the pieces of data themselves at that place.

I suppose that your different keys are actually dynamically generated from a given master key and a kind of counter which is associated with each database line (e.g. an "autoincrement" field with MySQL). In that case, if the key derivation process, which combines the master key and the counter value into a line-specific key, is decently secure (e.g. this is HMAC/SHA-256, computed over the counter with the master key as key), then you could even dispense with the AES altogether: just XOR the generated line-specific "key" with the data to encrypt or decrypt. On the other hand, if the key derivation process is cruder, then there may be hidden problems, even with AES. Using similar keys with AES exercises resistance of AES against related-key attacks, and AES has not been designed to resist that (it was not part of the selection criteria).

Related Questions

In a population-based cohort study, an entire community was interviewed regardin
Question #3149790
In a population-based cohort study, an entire community was interviewed regardin
Question #3150309
In a portable oxygen system, the oxygen (O_2) is contained in a cylinder whose v
Question #1628120
In a portable oxygen system, the oxygen (O_2) is contained in a cylinder whose v
Question #1641271
In a portfolio of three different stocks, which of the following could NOT be tr
Question #2649391
In a portfolio of three different stocks, which of the following could not be tr
Question #2685802
In a post in your designated group area, consider the following: EHR What teams
Question #421980
In a post using Chapter 15 information, websites listed for the labs, and at lea
Question #120130
Hire Me For All Your Tutoring Needs
Integrity-first tutoring: clear explanations, guidance, and feedback.
Drop an Email at
drjack9650@gmail.com
Chat Now And Get Quote

Navigate

Previous
In a project that I have started working on, the database has a lot of FooDefini
Next
In a projectile motion, the horizontal range and the maximum height attained by

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.