-
Notifications
You must be signed in to change notification settings - Fork 17
/
Copy pathDesCbcStringEncryption.cs
193 lines (174 loc) · 7.79 KB
/
DesCbcStringEncryption.cs
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
using System;
using System.IO;
using System.Security.Cryptography;
using System.Text;
public class Program {
public static void Main() {
Console.WriteLine("\n# # # SECURITY WARNING: This code is provided for achieve # # #");
Console.WriteLine("# # # compatibility between different programming languages. # # #");
Console.WriteLine("# # # It is not necessarily fully secure. # # #");
Console.WriteLine("# # # It uses the OUTDATED and UNSECURE algorithm DES. # # #");
Console.WriteLine("# # # It uses FIXED key and IV's that should NEVER used, # # #");
Console.WriteLine("# # # instead use random generated keys and IVs. # # #");
Console.WriteLine("# # # DO NOT USE THIS CODE IN PRODUCTION # # #\n");
string plaintext = "The quick brown fox jumps over the lazy dog";
Console.WriteLine("plaintext: " + plaintext);
Console.WriteLine("DES CBC String encryption with fixed key & iv");
// fixed encryption key 8 bytes long
string desKey = "12345678";
UTF8Encoding utf8 = new UTF8Encoding();
byte[] desEncryptionKey = utf8.GetBytes(desKey);
Console.WriteLine("desEncryptionKey (Base64): " + Base64Encoding(desEncryptionKey));
Console.WriteLine("\n* * * Encryption * * *");
String desCiphertextBase64 = desCbcEncryptToBase64(desEncryptionKey, plaintext);
Console.WriteLine("ciphertext (Base64): " + desCiphertextBase64);
Console.WriteLine("output is (Base64) iv : (Base64) ciphertext");
// decryption
Console.WriteLine("\n* * * Decryption * * *");
Console.WriteLine("ciphertext (Base64): " + desCiphertextBase64);
Console.WriteLine("input is (Base64) iv : (Base64) ciphertext");
String desDecryptedtext = desCbcDecryptFromBase64(desEncryptionKey, desCiphertextBase64);
Console.WriteLine("plaintext: " + desDecryptedtext);
Console.WriteLine("\nTriple DES CBC String encryption with fixed key (16 bytes) & iv");
// fixed encryption key 16 bytes long
string des2Key = "1234567890123456";
byte[] des2EncryptionKeyShort = utf8.GetBytes(des2Key);
byte[] des2EncryptionKey = tdes2ToDes3Key(des2EncryptionKeyShort);
Console.WriteLine("des2EncryptionKey (Base64): " + Base64Encoding(des2EncryptionKey));
Console.WriteLine("\n* * * Encryption * * *");
String des2CiphertextBase64 = des3CbcEncryptToBase64(des2EncryptionKey, plaintext);
Console.WriteLine("ciphertext (Base64): " + des2CiphertextBase64);
Console.WriteLine("output is (Base64) iv : (Base64) ciphertext");
// decryption
Console.WriteLine("\n* * * Decryption * * *");
Console.WriteLine("ciphertext (Base64): " + des2CiphertextBase64);
Console.WriteLine("input is (Base64) iv : (Base64) ciphertext");
String des2Decryptedtext = des3CbcDecryptFromBase64(des2EncryptionKey, des2CiphertextBase64);
Console.WriteLine("plaintext: " + des2Decryptedtext);
// TripleDES
Console.WriteLine("\nTriple DES CBC String encryption with fixed key (24 bytes) & iv");
// fixed encryption key 24 bytes long
byte[] des3EncryptionKey = Encoding.ASCII.GetBytes("123456789012345678901234");
Console.WriteLine("\n* * * Encryption * * *");
String des3CiphertextBase64 = des3CbcEncryptToBase64(des3EncryptionKey, plaintext);
Console.WriteLine("ciphertext (Base64): " + des3CiphertextBase64);
Console.WriteLine("output is (Base64) iv : (Base64) ciphertext");
Console.WriteLine("\n* * * Decryption * * *");
Console.WriteLine("ciphertext (Base64): " + des3CiphertextBase64);
Console.WriteLine("input is (Base64) iv : (Base64) ciphertext");
String des3Decryptedtext = des3CbcDecryptFromBase64(des3EncryptionKey, des3CiphertextBase64);
Console.WriteLine("plaintext: " + des3Decryptedtext);
}
static string desCbcEncryptToBase64(byte[] key, string data) {
byte[] encrypted;
// don't use this in production
byte[] IV = GenerateFixedDesInitvector();
// byte[] IV = GenerateRandomDesInitvector();
using(DES desAlg = DES.Create()) {
desAlg.Key = key;
desAlg.IV = IV;
desAlg.Mode = CipherMode.CBC;
var encryptor = desAlg.CreateEncryptor(desAlg.Key, desAlg.IV);
using(var msEncrypt = new MemoryStream()) {
using(var csEncrypt = new CryptoStream(msEncrypt, encryptor, CryptoStreamMode.Write)) {
using(var swEncrypt = new StreamWriter(csEncrypt)) {
swEncrypt.Write(data);
}
encrypted = msEncrypt.ToArray();
}
}
}
return Base64Encoding(IV) + ":" + Base64Encoding(encrypted);
}
static string desCbcDecryptFromBase64(byte[] key, string data) {
string decryptedtext;
String[] parts = data.Split(':');
using(DES desAlg = DES.Create()) {
desAlg.Key = key;
byte[] IV = Base64Decoding(parts[0]);
string encryptedData = parts[1];
byte[] cipherText = Base64Decoding(encryptedData);
desAlg.IV = IV;
desAlg.Mode = CipherMode.CBC;
ICryptoTransform decryptor = desAlg.CreateDecryptor(desAlg.Key, desAlg.IV);
using(var msDecrypt = new MemoryStream(cipherText)) {
using(var csDecrypt = new CryptoStream(msDecrypt, decryptor, CryptoStreamMode.Read)) {
using(var srDecrypt = new StreamReader(csDecrypt)) {
decryptedtext = srDecrypt.ReadToEnd();
}
}
}
}
return decryptedtext;
}
static string des3CbcEncryptToBase64(byte[] key, string data) {
byte[] encrypted;
// don't use this in production
byte[] IV = GenerateFixedDesInitvector();
// byte[] IV = GenerateRandomDesInitvector();
using(TripleDES desAlg = TripleDES.Create()) {
desAlg.Key = key;
desAlg.IV = IV;
desAlg.Mode = CipherMode.CBC;
var encryptor = desAlg.CreateEncryptor(desAlg.Key, desAlg.IV);
using(var msEncrypt = new MemoryStream()) {
using(var csEncrypt = new CryptoStream(msEncrypt, encryptor, CryptoStreamMode.Write)) {
using(var swEncrypt = new StreamWriter(csEncrypt)) {
swEncrypt.Write(data);
}
encrypted = msEncrypt.ToArray();
}
}
}
return Base64Encoding(IV) + ":" + Base64Encoding(encrypted);
}
static string des3CbcDecryptFromBase64(byte[] key, string data) {
string decryptedtext;
String[] parts = data.Split(':');
using(TripleDES desAlg = TripleDES.Create()) {
desAlg.Key = key;
byte[] IV = Base64Decoding(parts[0]);
string encryptedData = parts[1];
byte[] cipherText = Base64Decoding(encryptedData);
desAlg.IV = IV;
desAlg.Mode = CipherMode.CBC;
ICryptoTransform decryptor = desAlg.CreateDecryptor(desAlg.Key, desAlg.IV);
using(var msDecrypt = new MemoryStream(cipherText)) {
using(var csDecrypt = new CryptoStream(msDecrypt, decryptor, CryptoStreamMode.Read)) {
using(var srDecrypt = new StreamReader(csDecrypt)) {
decryptedtext = srDecrypt.ReadToEnd();
}
}
}
}
return decryptedtext;
}
static byte[] tdes2ToDes3Key(byte[] tdes2Key) {
byte[] tdes3Key = new byte[24];
Array.Copy(tdes2Key, 0, tdes3Key, 0, 16);
Array.Copy(tdes2Key, 0, tdes3Key, 16, 8);
return tdes3Key;
}
static byte[] GenerateRandomDesKey() {
RNGCryptoServiceProvider rngCsp = new RNGCryptoServiceProvider();
byte[] key = new byte[8]; // 8 bytes for des, 16 bytes for TDES 2 and 24 bytes for TDES 3
rngCsp.GetBytes(key);
return key;
}
static byte[] GenerateRandomDesInitvector() {
RNGCryptoServiceProvider rngCsp = new RNGCryptoServiceProvider();
byte[] iv = new byte[8];
rngCsp.GetBytes(iv);
return iv;
}
// don't use this in production
static byte[] GenerateFixedDesInitvector() {
return Encoding.ASCII.GetBytes("12345678");
}
static string Base64Encoding(byte[] input) {
return Convert.ToBase64String(input);
}
static byte[] Base64Decoding(String input) {
return Convert.FromBase64String(input);
}
}