Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to detect block cipher mode

Tags:

aes

block-cipher

ecb

cbc-mode

How to detect if a message was crypt by CBC or ECB mode?

I have made a function who encrypt in AES 128 CBC or ECB randomly, and I do hamming between clear text and cipher text, but seams not correlated to cipher mode.

How can I detect the block cipher mode?

Thank you in advance

like image 408
Xantra Avatar asked Jun 29 '13 16:06

Xantra

People also ask

Which mode uses block cipher?

Counter Mode – The Counter Mode or CTR is a simple counter-based block cipher implementation. Every time a counter-initiated value is encrypted and given as input to XOR with plaintext which results in ciphertext block.

What is the best block cipher mode?

The GCM (Galois/Counter Mode) block mode takes all the advantages of the CTR mode and adds message authentication (produces a cryptographical message authentication tag). GCM is fast and efficient way to implement authenticated encryption in symmetric ciphers and it is highly recommended in the general case.

How does CBC mode work?

In cipher block chaining mode, the plaintext of a block is combined with the ciphertext of the previous block via an exclusive or (xor) operation, and the result is encrypted. The result is the ciphertext of that block, and will also be used in the encryption of the following block.

2 Answers

The answer is pretty much given in the problem statement:

Remember that the problem with ECB is that it is stateless and deterministic; the same 16 byte plaintext block will always produce the same 16 byte cipher text.

Thus, with the assumption that some repeated plaintext blocks occur at the same ciphertext block offsets, we can simply go ahead and look for repeated ciphertext blocks of various lengths.

like image 79
crishoj Avatar answered Sep 27 '22 19:09

crishoj

I am doing the same problem set and just finished this problem (using clojure).

My first hint is, it will be more clear what you need to do if you are using a language which supports first class functions/lambdas.

Anyways, let's break down the problem a bit:

First, just write a function which validates that a blackbox is encrypting data with ecb. How would you do this?

It might look something like (pseudocode below)

function boolean isEcbBlackbox(func f) 
{   //what input can I use to determine this?
    result = f("chosen input")
    if(result ...) {//what property of result should I look for?
        true
    } else {
        false
    }
}

Remember, the key weakness of ECB is identical blocks of plaintext will be encrypted to identical blocks of ciphertext.

EDIT: The challenges are now public, so I will link to my solution(s):

https://github.com/dustinconrad/crypto-tutorial/blob/master/src/crypto_tutorial/lib/block.clj#L118

like image 38
RedDeckWins Avatar answered Sep 27 '22 20:09

RedDeckWins
Sign in to Comment

Related questions

Encryption and Decryption between Java and Javascript won't work
javax.crypto.IllegalBlockSizeException: last block incomplete in decryption - Decrypting an encrypted AES String
How to do AES decryption using OpenSSL
Generating random IV for AES in Java
Encrypt in java and Decrypt in C# For AES 256 bit
RijndaelManaged "Padding is invalid and cannot be removed" that only occurs when decrypting in production
Java using AES 256 and 128 Symmetric-key encryption
IllegalBlockSizeException when trying to encrypt and decrypt a string with AES
OpenSSL C example of AES-GCM using EVP interfaces
Which attacks are possible concerning my security layer concept?
Different encryption results between platforms, using OpenSSL
AES difference between iPhone (Objective-c) and Java
How can I decrypt an encrypted MCRYPT_RIJNDAEL_256 value in C#, that was encrypted by mcrypt in PHP?
How to implement Java 256-bit AES encryption with CBC
What's wrong with nodejs crypto decipher?
last block incomplete with CipherInputStream/CipherOutputStream, even with padding AES/CBC/PKCS5Padding
File Encryption/Decryption with AES using Linux
Decrypting AES256 with node.js returns wrong final block length
How to convert hexadecimal string to an array of UInt8 bytes in Swift?
AES 128 encryption in Java Decryption in PHP

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!