PupCrypt

Stuff that has yet to be sorted into a category.
Post Reply
Message
Author
User avatar
gposil
Posts: 1300
Joined: Mon 06 Apr 2009, 10:00
Location: Stanthorpe (The Granite Belt), QLD, Australia
Contact:

PupCrypt

#1 Post by gposil »

Thought this maybe of use to some, during my work on the Puppy Personal Database, I had to port some of my work from that other OS to Puppy and this was just part of it...A super-duty file encryption app.

It uses a modified RC6 128bit-block algorithm with a twist, the key which can be up to 2040bit is also encrypted using sha1...Now there's some security...The prog saves a copy of the hashed key in the working directory.

Any if its of use, here it is, if anyone is interested the the source to the encryption, let me know
Attachments
pupcrypt.jpg
Screenshot
(24.96 KiB) Downloaded 1062 times
[img]http://gposil.netne.net/images/tlp80.gif[/img] [url=http://www.dpup.org][b]Dpup Home[/b][/url]

User avatar
clarf
Posts: 613
Joined: Wed 13 Jun 2007, 19:22
Location: The old Lone Wolf

#2 Post by clarf »

Very interesting project.

Did you modify original RC6 algorithm?. As I remember it´s a RSA patented algorithm....

User avatar
gposil
Posts: 1300
Joined: Mon 06 Apr 2009, 10:00
Location: Stanthorpe (The Granite Belt), QLD, Australia
Contact:

#3 Post by gposil »

No, the algorithm core is Rijndael(AES) with the key registers modified from RC6 ideas
[img]http://gposil.netne.net/images/tlp80.gif[/img] [url=http://www.dpup.org][b]Dpup Home[/b][/url]

User avatar
ttuuxxx
Posts: 11171
Joined: Sat 05 May 2007, 10:00
Location: Ontario Canada,Sydney Australia
Contact:

#4 Post by ttuuxxx »

wow that looks like a cool program, anyway to get it say under 100kb? makes it hard to have a default application when its almost 1MB.
Still would be great for pupplets etc. Thanks, Also I always figured it would be nice to have a application similar to this but embedded into the OS, So when you partition a hard drive it uses maybe the hard drive serial number and encrypts it automatically and then a backup hard drive program would have to have it built in also, so it could be mirrored, that way say if you did a full install of puppy as root, hackers on the net would not be able to access that HD, Something like that could be good for businesses, banks etc, actually almost a split system would be good, like when you install a application, a pop-up would ask, "Is this a Internet resource using application?" and if so, that would be a memory based application, meaning every time that the application is ran, its moved to a /tmp/ location in the memory and if it wasn't then it would just use the hard drive. Maybe I'm over thinking things again, lol
ttuuxxx
http://audio.online-convert.com/ <-- excellent site
http://samples.mplayerhq.hu/A-codecs/ <-- Codec Test Files
http://html5games.com/ <-- excellent HTML5 games :)

User avatar
gposil
Posts: 1300
Joined: Mon 06 Apr 2009, 10:00
Location: Stanthorpe (The Granite Belt), QLD, Australia
Contact:

#5 Post by gposil »

I can get the algorithm and key registers in under 50k but the gui is the big hog...if someone wants to do the gui in Vala/Genie that would do it...I don't have time to learn another computer language...already too many in my head, I may have a look at it in c++ in future...
[img]http://gposil.netne.net/images/tlp80.gif[/img] [url=http://www.dpup.org][b]Dpup Home[/b][/url]

User avatar
Lobster
Official Crustacean
Posts: 15522
Joined: Wed 04 May 2005, 06:06
Location: Paradox Realm
Contact:

#6 Post by Lobster »

Guy - enclosed is a shell script which calls the bcrypt program (blowfish algorithm) that is in puppy 4.15 Alpha - you can see the program in /usr/sbin

decompress
Just get rid of .txt extension and make in executable :)
that might be suitable for your needs :)

tee hee :lol: reminds me of one of the few programs I wrote
Blowfish 007
It was more developed than this - maybe MI5 made off with it?
http://www.murga-linux.com/puppy/viewto ... 637#121242
Attachments
zip_crypt.tar.gz
(2.34 KiB) Downloaded 375 times
Puppy Raspup 8.2Final 8)
Puppy Links Page http://www.smokey01.com/bruceb/puppy.html :D

User avatar
gposil
Posts: 1300
Joined: Mon 06 Apr 2009, 10:00
Location: Stanthorpe (The Granite Belt), QLD, Australia
Contact:

#7 Post by gposil »

yes I knew about that, used blowfish about ten years ago, rather archaic and slow compared to modern 128bit and and above block encoders...and totally unsuitable for stream encryption.
[img]http://gposil.netne.net/images/tlp80.gif[/img] [url=http://www.dpup.org][b]Dpup Home[/b][/url]

User avatar
clarf
Posts: 613
Joined: Wed 13 Jun 2007, 19:22
Location: The old Lone Wolf

#8 Post by clarf »

HI gposil. Could you share the encryption source code, you said you´ll check to port it to C++. I´ll like to access the C/C++ source.

Thank you.

Mixie
Posts: 1
Joined: Mon 06 Jul 2009, 20:45

#9 Post by Mixie »

gposil wrote:No, the algorithm core is Rijndael(AES) with the key registers modified from RC6 ideas
Hmm, I have some concerns over this. First of all, it looks like you invented your own algorithm (a hybrid of AES and RC6) instead of using tried-and-true peer reviewed algorithms (such as the AES finalists implemented to spec). Second, there is no source code available, so it is not possible to perform even the limited peer review that would be enabled through access to the source code. Since this is an invented algorithm, existing test vectors for encryption will not work, so it will be hard to discover implementation or algorithm flaws.

To summarize, the security of this program is a mystery.

Even when using only part of the RC6 algorithm, there may still be patent concerns as well.

Are there plans to address these concerns?

Post Reply