Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How key_derivation and key_verification functions are implemented of a 7-zip archive's encryption mechanism?

Tags:

cryptography

encryption

password-recovery

7zip

cryptanalysis

I am curious about how password recovery works for password protected files. And I want to know the exact flow of the 7-zip encryption mechanism.

7-zip uses AES-256 encryption algorithm in CBC mode, to encrypt files or a folder. The key is generated from user supplied pass-phrase based on SHA-256 hash function. The SHA-256 is executed 219 (524,288) times to increase the cost of exhaustive search. Also, to help reduce the risk of dictionary attacks, salt is appended to original pass-phrase before generating hash.

My First question is how does key_derivation function work to generate a 256-bit key ? What is importance of IV for AES CBC mode and how it is generated?

My second and most important question is how key is verified to decrypt the 7-zip archive ? I mean how does its key_verification function work ?

like image 201
Gopal Avatar asked Sep 18 '12 04:09

Gopal

People also ask

Which encryption method should be used to encrypt data at rest with 7-Zip?

You can compress and encrypt archives with 7-Zip with AES-256 encryption.

How does 7Zip encrypt?

In the "Archive" field, enter the name of the file or archive you want created. From the "Archive format" field, select zip. Under the "Encryption" section, enter a strong password or passphrase in the "Enter passphrase" field and again in the "Reenter passphrase" field. Ensure the "Encryption method" is AES-256.

What is the encryption algorithm used to encrypt the zip file?

zip or . zipx): AES encryption: AES is the Advanced Encryption Standard, which is the result of a three-year competition sponsored by the U.S. Government's National Institute of Standards (NIST). This encryption method, also known as Rijndael, has been adopted by NIST as a Federal Information Processing Standard.

Does 7Zip support encryption?

7-Zip is a free file compression program that also allows you to encrypt and password protect the files you compress. You can compress multiple files into a single archive file. For someone to open an encrypted file created with 7-Zip that person will need to have 7-Zip or a compatible program.

1 Answers

The key derivation function is in the source of file 7zAes.cpp, it's called:

void CKeyInfo::CalculateDigest()

and it creates the key using a proprietary (rather dull) mechanism.

I haven't been able to find the key_verification method yet, if it exists. I'll let you know if I do find it.

like image 61
Maarten Bodewes Avatar answered Nov 05 '22 17:11

Maarten Bodewes
Sign in to Comment

Related questions

Creating an encrypted log file
How to find and play videos downloaded by Lynda.com Android or Windows app
Difference between asymmetric and symmetric encryption methods?
Asymmetric cryptography example in C#
Docker PostgreSQL data encryption at rest
Is data encrypted in Silverlight decryptable using C++?
Decrypt TLS https data traffic
Encryption with an AlwaysOn cluster
Android, selecting a Cipher suite
Companies to do code review of crypto in an ActiveRecord / Ruby on Rails webapp? [closed]
Exception: "Given final block not properly padded" in Linux, but it works in Windows
How to use CipherOutputStream correctly to encrypt and decrypt log created with log4j (RollingFileAppender)
Enable iOS On-Disk Encryption
Ensuring Data completeness and validity on third party storage
Encrypt SQLite database without increasing app size?
What is the default file protection on iOS and how to change it
How to encrypt AWS Lambda environment variables using CloudFormation
Client side (javascript) file upload encryption [closed]

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!