[Patches] [ python-Patches-675698 ] New block cipher API
SourceForge.net
noreply@sourceforge.net
Mon, 27 Jan 2003 12:09:00 -0800
Patches item #675698, was opened at 2003-01-27 20:05
You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=305470&aid=675698&group_id=5470
Category: None
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: paul rubin (phr)
Assigned to: Nobody/Anonymous (nobody)
Summary: New block cipher API
Initial Comment:
This is a preliminary, pure-Python implementation of a
new block cipher API, superseding PEP 272 (I've been in
contact with Andrew about it and he says it's ok).
It's loosely patterned after the Java cipher classes,
but less fancy and maybe more Pythonic. The API is
divided into two layers, a "codebook" layer which
implements a raw block cipher (like DES or AES), and a
"modes of operation" layer which implements the
standard FIPS modes (ECB, CTR, CBC, CFB, OFB) by
calling the codebook layer. There's just one "modes of
operation" module, which can call any codebook
interchangeably. This makes more sense to me than PEP
272, which required each codebook module to implement
all the FIPS modes itself.
I'm hoping to finalize the API and submit a C
implementation, along with C implementations of
DES/3DES and AES in time for 2.3a2. I'm submitting
this Python version as a patch per Andrew's suggestion,
to get it onto the radar for upcoming releases. The
Python version includes 64- and 128-bit block ciphers
based on the Luby-Rackoff construction with SHA1 as the
round function. This is mainly for reference and
testing purposes--while these ciphers should be secure,
they're pretty slow and won't interoperate with
anything else out there.
There is a test harness included, "test.py", which
works under Linux and Cygwin. It won't work under
Windows because it depends on a random number module
(included) that uses a Linux system device. I have a
separate effort (i.e. search for volunteers with
Windows dev tools) to provide a Windows RNG that calls
the Windows CAPI to get random numbers.
Note: I haven't tested the Python implementation
extensively, since it's intended as a throwaway. Don't
use it for anything serious. Before submitting a C
module, I'll make sure that all the FIPS test vectors
work for all the modes.
----------------------------------------------------------------------
>Comment By: paul rubin (phr)
Date: 2003-01-27 20:09
Message:
Logged In: YES
user_id=72053
Somehow the file attachment didn't work. Oh well. The
reference implementation is at:
http://www.nightsong.com/phr/crypto/blockcipher.tgz
----------------------------------------------------------------------
You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=305470&aid=675698&group_id=5470