SourceFiles.org - Use the Source, Luke
Home | Register | News | Forums | Guide | MyLinks | Bookmark

Related Sites

Latest News
  General News
  Reviews
  Press Releases
  Software
  Hardware
  Security
  Tutorials
  Off Topic


Back to files

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML//EN"> <html>
<head>
<title>AESCrypt</title>
</head>

<body>
<center>

<h1>AESCrypt: Rijndael encryption for shell scripts.</h1> </center>

This is a program for encrypting/decrypting streams of data using Rijndael and Cipher Block Feedback mode (CFB-128).
<p>
<h2> Sourceforge project page: </h2>

See <a href="http://sourceforge.net/projects/aescrypt/">http://sourceforge.net/projects/aescrypt/</a>;

<h2>Usage:</h2>

aescrypt -k {keyfile}<br>
aesget -k {keyfile}<br>
<p>
Encrypt/decrypt stdin using the Advanced Encryption Standard winner "Rijndael" encryption algorithm in Cipher Block Feedback (stream) mode. Uses /dev/urandom to create a salt. Prepends the output stream with salt when encrypting, strips it off when decrypting. <p>
Keyfile format:
<p>
...<br>
kk=hexdits\n<br>
...<br>
where hexdits is:
<p>

32 chars for 128 bit<br>
48 chars for 196 bits. <br>
64 chars for 256 bits
<p>
Note that there may be other text in the file. But the key must be at start of a line, and must start with 'kk=', and must be hex. <p>
If the key file is "-", it instead reads the first 33 bytes off stdin and treats them as a null-terminated hex key. Using "-" limits you to 128-bit keys, but prevents having to put the key onto disk for those cases where you are using public key encryption to chat session keys for aescrypt and do not want the session key anywhere that it could get intercepted. <p>
<h2>Limitations:</h2>
<p>
<ol>
<li> The keyfile is NOT encrypted.
<li> Keysize = 128 bits, hard-coded at the moment, despite any documentation to the contrary. Need a "-s" option to specify key size, sigh. <li> Need a key generator! ( This should be a simple shell script -- use dd to grab some data, then md5sum to create a hex mix of that data, then 'awk' to grab the hex part of the output of md5sum ). <li> Relies upon having /dev/urandom. See the Ocotillo PRNG if you don't have a /dev/urandom.

<li>This program was deliberately kept extremely simple. It is not intended to be a full encryption solution, it is intended to be used within scripts as part of a complete solution. Keychain management, public key signatures, etc. are all expected to be done external to this program.

</ol>
<h2> Legal Notices </h2>
This software is a cryptographic component. It is not for export or redistribution to any of what are called the "T-10 Terrorist States" as detirmined by the U.S. Department of State. Please comply with this restriction so that this site is not forced to shut down.

<p><b>December 15, 2000:</b> Export reminder: I received a phone call today from a lady with the U.S. Bureau of Export Administration (BXA) who'd read my AEScrypt page (the URL of which I'd submitted to them for an export license exemption as required by U.S. export regulations, see <a href="http://www.crypto.com">crypto.com</a> for more info). aescrypt is of course Open Source. She wished to remind me that any application built using Open Source encryption components had to also be submitted to the BXA for the proper export license or license exemption if the application was to be exported. The export license for the component covers only the component, not applications that use the component. The fact that the component itself is Open Source and thus may be freely exported does not matter. <p>

Hopefully this reminder will prevent problems on the part of those who use AEScrypt or other Open Source encryption components as part of a larger application.

<h2> Obtaining Source </h2>
This software is available only as source: <p>
<ul>
<li><a href="aescrypt-0.6.tar.gz">aescrypt-0.6.tar.gz</a> </ul>
<p>

<h2> Installation: </h2>
./configure -prefix=/opt/brupro<br>
make<br>
make install<br>
<p>
<h2> Authors: </h2>
<p>
AESCrypt was written by <a href="mailto:eric@badtux.org">Eric Lee Green</a>, and was modified to use Rijndael rather than Twofish by <a href="mailto:randyk@sourceforge.net">Randy Kaelber</a>. AESCrypt is copyrighted by <a href="http://www.estinc.com">Enhanced Software Technologies Inc.</a>, but is
released under a BSD-style Open Source license. See file LICENSE for info. <p>
Attribution information: This software includes Rijndael encryption routines by Antoon Bosselaers and Vincent Rijmen. They have stated that their routines are free for public use.

<h2> Hosting: </h2>

Done by <a href="http://www.valinux.com">VA Linux's</a> <a href="http://www.sourceforge.net">Source Forge</a> service.

<hr>
<address><a href="mailto:eric@badtux.org">Eric Lee Green</a></address> <!-- Created: Fri Nov 3 13:30:00 MST 2000 --> <!-- hhmts start -->
Last modified: Thu May 17 10:00:04 MST 2001 <!-- hhmts end -->
<!-- $Revision: 1.1.1.1 $ -->
<!-- $Date: 2001/05/17 17:10:59 $ -->
</body>


Other Sites

Discussion Groups
  Beginners
  Distributions
  Networking / Security
  Software
  PDAs

About | FAQ | Privacy | Awards | Contact
Comments to the webmaster are welcome.
Copyright 2006 Sourcefiles.org All rights reserved.