Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

First 8 byes of my encrypted data corrupting using 3DES and CBC

Tags:

python

cryptography

corruption

pycrypto

I'm using PyCrypto in an application to encrypt data, but for some reason the first 8 bytes (corresponding to the first block) are coming through corrupt no matter what I do.

>>> from Crypto.Cipher import DES3
>>> from Crypto import Random
>>> iv = Random.new().read(DES3.block_size)
>>> key = Random.new().read(DES3.key_size[-1])
>>> des3 = DES3.new(key, DES3.MODE_CBC, iv)
>>> des3.decrypt(des3.encrypt('12345678abcdefgh12345678'))
't\x1b\x0f\xcbD\x15M\xababcdefgh12345678'

I've read that that's a sign that the IV is corrupt, but those sources also say that using a mode other than CBC would result in the entire message corrupting. That isn't the case:

>>> des3 = DES3.new(key, DES3.MODE_CFB, iv)
>>> des3.decrypt(des3.encrypt('12345678abcdefgh12345678'))
'\xe1\x85\xae,\xf1m\x83\x9cabcdefgh12345678'

I can also rule out the cipher as the cause:

>>> from Crypto.Cipher import AES
>>> from Crypto import Random
>>> iv = Random.new().read(AES.block_size)
>>> key = Random.new().read(AES.key_size[-1])
>>> aes = AES.new(key, AES.MODE_CBC, iv)
>>> aes.decrypt(aes.encrypt('12345678abcdefgh12345678abcdefgh'))
'\xa7l\x00]\x1cW\xec\xd0\x04\x06\xba&\x1663\xd712345678abcdefgh'

Note that in this example the first 16 bytes are corrupt, which corresponds to AES' block size.

like image 606
rspeed Avatar asked May 02 '13 23:05

rspeed

1 Answers

You have to reset IV vector before decryption. Try this code:

>>> from Crypto.Cipher import DES3
>>> from Crypto import Random
>>> iv = Random.new().read(DES3.block_size)
>>> key = Random.new().read(DES3.key_size[-1])
>>> des3enc = DES3.new(key, DES3.MODE_CBC, iv)
>>> des3dec = DES3.new(key, DES3.MODE_CBC, iv)
>>> des3dec.decrypt(des3enc.encrypt('12345678abcdefgh12345678'))

IV vector is changing after encryption / decryption each block. You used the same instance of DES3 class for encrypting and decrypting the message, therefore you had incorrect IV for decryption.

Hope above code works - I didn't test it.

More about CBC mode: http://en.wikipedia.org/wiki/Block_cipher_mode_of_operation

like image 129
Marek Avatar answered Oct 16 '22 07:10

Marek
Sign in to Comment

Related questions

Create single list with multiple instances of objects from second list in Python
Jinja2: saying 'Render this macro inside another macro or template'
Given a string that's a weekday name, how to figure out weekday as decimal (and the next date it occurs)?
Run python script with dot slash ./
ImportError: cannot import name Ghost
How can I get the offset where a Python regular expression search found a match?
pyHook for Python 3.3
Sum tuples if identical values
Django error: cannot import name current_datetime
Redis disconnecting and reconnecting on Twisted periodically
Preparing _tkinter and sqlite3 for Python installation (no admin rights)
Web scraping with python and sqlite. How to store scraped data effectively?
How do I check if a twisted.internet.protocol instance has disconnected
Processing some file before starting app and reacting for every change
scikit-image save image to a bytestring
How can I force python to use dumbdbm module to create a new database?
Understanding characters received from Arduino
PySNMP : ImportError: No module named pyasn1.compat.octets
Speed up random matrix computation
Representing a ragged array in numpy by padding

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!