GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → gioblu → Cape

gioblu / Cape

String encryption for Arduino, limited microcontrollers and other embedded systems.

Programming Languages

c
50402 projects - #5 most used programming language

Labels

arduinoencryptionhashstringcipher

Projects that are alternatives of or similar to Cape

AES
AES for microcontrollers (Arduino & Raspberry pi)
Stars: ✭ 116 (+100%)
Mutual labels:  encryption, cipher
Xorstr
heavily vectorized c++17 compile time string encryption.
Stars: ✭ 435 (+650%)
Mutual labels:  encryption, string
EncrypC
🔑 File Encryption Application using Python.
Stars: ✭ 14 (-75.86%)
Mutual labels:  encryption, hash
shadowsocks-libev-nocrypto
libev port of shadowsocks. In this fork, encryption is optional!
Stars: ✭ 24 (-58.62%)
Mutual labels:  encryption, cipher
Node Fpe
Format preserving string substitution encryption
Stars: ✭ 17 (-70.69%)
Mutual labels:  encryption, cipher
ArduinoSpritzCipher
Spritz encryption system portable C library, CSPRNG, cryptographic hash and MAC functions, symmetric-key data encryption, and general-purpose functions. It's also an Arduino library.
Stars: ✭ 67 (+15.52%)
Mutual labels:  encryption, hash
Bcrypt.net
BCrypt.Net - Bringing updates to the original bcrypt package
Stars: ✭ 422 (+627.59%)
Mutual labels:  hash, cipher
Util
A collection of useful utility functions
Stars: ✭ 201 (+246.55%)
Mutual labels:  hash, string
Android Goldfinger
Android library to simplify Biometric authentication implementation.
Stars: ✭ 608 (+948.28%)
Mutual labels:  encryption, cipher
Securitydriven.inferno
✅ .NET crypto done right. Professionally audited.
Stars: ✭ 501 (+763.79%)
Mutual labels:  hash, encryption
jscrypto
Crypto library for Node/ES6/Typescript/Browser.
Stars: ✭ 20 (-65.52%)
Mutual labels:  cipher, hash
Java Crypto Utils
Java Cryptographic, Encoding and Hash Utilities
Stars: ✭ 15 (-74.14%)
Mutual labels:  hash, encryption
WebCrypto.swift
A small collection of cryptographic functions based on the JavaScript WebCrypto API.
Stars: ✭ 16 (-72.41%)
Mutual labels:  cipher, hash
xipher
🔒 Simple perfect xor encryption cipher 🔒
Stars: ✭ 61 (+5.17%)
Mutual labels:  encryption, cipher
Nsec
A modern and easy-to-use cryptographic library for .NET Core based on libsodium
Stars: ✭ 217 (+274.14%)
Mutual labels:  hash, encryption
Eth Crypto
Cryptographic javascript-functions for ethereum and tutorials to use them with web3js and solidity
Stars: ✭ 420 (+624.14%)
Mutual labels:  encryption, cipher
Open Crypto
🔑 Hashing (BCrypt, SHA2, HMAC), encryption (AES), public-key (RSA), and random data generation.
Stars: ✭ 115 (+98.28%)
Mutual labels:  hash, encryption
Crypto Async
Fast, reliable cipher, hash and hmac methods executed in Node's threadpool for multi-core throughput.
Stars: ✭ 161 (+177.59%)
Mutual labels:  hash, cipher
Swifty
🔑 Free Offline Password Manager
Stars: ✭ 496 (+755.17%)
Mutual labels:  encryption, cipher
Enigma
Enigma cipher tool
Stars: ✭ 13 (-77.59%)
Mutual labels:  encryption, cipher
View All Similar Projects ➔

Cape 3.0

Cape implements private key, public salt, xor based symmetric stream cipher developed to offer encryption on limited microcontrollers.

Cape is an experimental project, should be used for research and educational purposes and should not be applied in production. Cape 3.0 has been posted on reddit/r/crypto to obtain feedback about its algorithm and great minds broke it in a matter of hours:

  • rspencer01 exposed a full break of the algorithm using brute force and some hints about its plaintext
  • silkeh exposed a known plaintext attack and poor performance of salt

See the extremely educational related issue, KnownPlainTextVulnerability and ArduinoBruteForceKey examples.

Cape algorithm is weak because has been engineered not taking in consideration enough the Kerckhoff's principle or "one ought to design systems under the assumption that the enemy will immediately gain full familiarity with them" in contrast to the "security through obscurity" principle that is obviously not applicable to open-source software. Furthermore, has not been considered the possibility that an attacker could constrain the necessary time to brute force the key used having partial hints about its plain text content (known plain text vulnerability). Further study will be done to determine the feasibility of a new, more secure encryption algorithm to be applied in this library.

How to use Cape

Instantiate Cape passing the encryption key, its length and optionally the salt. The longer is the key the higher is the encryption strength. Encryption key must be kept secret and never transmitted, generated salt instead can be exchanged only if encrypted.

  // Instance name - Private key - Length
  Cape cape("YOUR-ENCRYPTION-KEY", 19);
  // Optional Public salt (to be shared encrypted)
  cape.salt = "S";

Adding salt higher data security, supporting the same private key usage for a longer time, exchanging a new salt once in a while if necessary. To hash data call hash passing the data source buffer, the destination buffer and the data length:

  char source[] = "CRYPTMEPLEASE";
  char destination[13];
  // Light symmetric stream cipher -> "I1C_8K)*8G}dB"
  cape.hash(source, destination, 13);    
  // Hash again to get back        -> "CRYPTMEPLEASE"
  cape.hash(destination, source, 13);

To encrypt a string call encrypt passing the data source buffer, the destination buffer, the data length and a pseudo-random 8-bit integer used as initialization vector:

  char source[] ="CRYPTMEPLEASE";
  char destination[14];
  // Strong asymmetric encryption  -> "09)*&{
  cape.encrypt(source, destination, 13, random(0, 255));
  // Call decrypt to get back      -> "CRYPTMEPLEASE"
  cape.decrypt(destination, source, 14);

In the destination buffer it is saved the encrypted data along with a one byte initialization vector at the end, be sure to define your destination buffer always 1 byte longer and not to exceed 65534 data length.

If you need to change the encryption key after instantiation call set_key passing the new key and its length:

  cape.set_key("YOUR-ENCRYPTION-KEY", 19);

Encryption strength

After the support of expert cryptologists from reddit/r/crypto, has been practically demonstrated that Cape v3.0 algorithm is weak and a full break is already publicly available.

Ports developed by contributors

Contribute

Feel free to open an issue or to send a pull request, changes affecting both algorithm and implementation can be proposed and are evaluated. If you have detected a vulnerability, act ethically and share immediately your discovery with the community. Thank you for your support.

License

/*  _____  _____   _____   _____
   |      |_____| |_____| |_____
   |_____ |     | |       |_____  version 3.0

Cape Copyright © 2012-2018, Giovanni Blu Mitolo All rights reserved.

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License. */
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].