Okusiba n’okuggya ensirifu mu AES (ECB, CBC, CTR, CFB, GCM) Ku mutimbagano

Omutindo gw'okusiba ogw'omulembe(AES) . ye nkola y’okusiba ensirifu (symmetric encryption algorithm). AES ye mutindo gw’amakolero nga bwe guli kati kuba ekkiriza okusiba 128 bit, 192 bit ne 256 bits. Ensirifu ya symmetric ya mangu bw’ogeraageranya n’ensirifu ya asymmetric era zikozesebwa mu nkola nga enkola ya database. Wammanga kye kimu ku bikozesebwa ku mutimbagano okukola ensirifu ya AES n’okuggya ensirifu mu biwandiiko byonna ebya bulijjo oba ekigambo ky’okuyingira.

Ekintu kino kiwa engeri eziwera ez’okusiba n’okuggya ensirifu nga ECB, CBC, CTR, CFB ne GCM mode. GCM etwalibwa ng’esinga obukuumi okusinga CBC mode era emanyiddwa nnyo olw’enkola yaayo.

Okumanya ebisingawo ku AES encryption, genda ennyonyola eno ku AES Encryption. Wansi waliwo ffoomu y'okutwala ebiyingizibwa mu kusiba n'okuggya ensirifu.

Ensirifu ya AES

Yingiza Ebiwandiiko ebya bulijjo okusiba

Londa Cipher Mode y'okusiba

Londa Padding

Yingiza IV (Okusalawo) .

Tag Len (Ekyetaagisa ku mbeera ya GCM)

Sayizi y'ekisumuluzo mu Bits

Yingiza Ekisumuluzo eky'ekyama

Ensengeka y'Ekiwandiiko ekifuluma Omusingi64 Hex

AES Encrypted Ebifulumizibwa

AES Okuggya ensirifu

AES Ebiwandiiko Ebikubiddwa Ensirifu

Londa Cipher Mode y'Okuggyamu Ensirifu

Londa Padding

Yingiza IV Ekozesebwa Mu kiseera ky'Okusiba(Optional)

Tag Len (Ekyetaagisa ku mbeera ya GCM)

Sayizi y'ekisumuluzo mu Bits

Yingiza Ekisumuluzo eky'ekyama ekikozesebwa mu Encryption

Ensengeka y'Ekiwandiiko ekifuluma Omusingi64 Ekiwandiiko ekitegeerekeka obulungi

AES Ebifulumizibwa Ebifulumiziddwa

Omuwendo gwonna ogw’ekisumuluzo eky’ekyama gw’oyingiza, oba gwe tukola teguterekebwa ku mukutu guno, ekintu kino kiweebwa okuyita mu HTTPS URL okukakasa nti ebisumuluzo byonna eby’ekyama tebisobola kubbibwa.

Bw’oba osiimye ekintu kino olwo osobola okulowooza ku ky’okuwaayo.

Twebaza obuwagizi bwammwe obutaggwaawo.

Ebikulu Ebirimu

Ekigerageranyo (Symmetric). Key Algorithm: Ekisumuluzo kye kimu kikozesebwa mu byombi okusiba n’okuggya ensirifu.
Ekiwandiiko kya Block Cipher: AES ekola ku bulooka za data eza sayizi ezitakyukakyuka. Sayizi ya bulooka eya bulijjo eri 128 bits.
Obuwanvu bw’Ebikulu: AES ewagira obuwanvu bw'ebisumuluzo obwa bits 128, 192, ne 256. Ekisumuluzo gye kikoma okuba ekiwanvu, ensirifu gyekoma okuba ey’amaanyi.
Obukuumi: AES etwalibwa ng'ey'obukuumi ennyo era ekozesebwa nnyo mu nkola n'enkola ez'enjawulo ez'obukuumi.

AES Encryption Ebiragiro & Ebigambo Ebikozesebwa

Ku ky’okusiba, osobola okuyingiza ekiwandiiko ekitegeerekeka oba ekigambo ky’okuyingira ky’oyagala okusiba. Kati londa enkola ya block cipher ey'okusiba.

Emitendera egy'enjawulo egyawagirwa egy'okusiba AES

AES egaba engeri eziwera ez’okusiba nga ECB, CBC, CTR, OFB, CFB ne GCM mode.

ECB(Electronic Code Book) ye ngeri ennyangu ey’okusiba era tekyetaagisa IV okusiba. Ebiwandiiko ebya bulijjo ebiyingizibwa bijja kwawulwamu bulooka era buli bulooka ejja kusibirwa n’ekisumuluzo ekiweereddwa era n’olwekyo bulooka z’ebiwandiiko ebya bulijjo ebifaanagana zikuumibwa mu bulooka z’ebiwandiiko eby’ekika kya cipher ebifaanagana.
CBC(Cipher Block Chaining) mode esengekeddwa nnyo, era ngeri ya mulembe ya block cipher encryption. Kyetaaga IV okufuula buli bubaka obw’enjawulo ekitegeeza nti ebitundu by’ebiwandiiko ebya bulijjo ebifaanagana bikuumibwa mu bulooka z’ebiwandiiko bya cipher ebitali bimu. N’olwekyo, egaba ensirifu ennywevu ennyo bw’ogeraageranya ne mode ya ECB, naye egenda mpola katono bw’ogeraageranya ne mode ya ECB. Singa tewali IV eyingizibwa olwo default ejja kukozesebwa wano ku CBC mode era ekyo default ku zero-based byte[16].
CTR(Counter) CTR mode (CM) era emanyiddwa nga mode y’okubala namba enzijuvu (ICM) ne mode y’okubala namba enzijuvu ezikutuddwamu (SIC). Counter-mode efuula block cipher okufuuka stream cipher. CTR mode erina engeri ezifaanagana ne OFB, naye era ekkiriza ekintu eky’okuyingira mu ngeri ey’ekifuulannenge mu kiseera ky’okuggya ensirifu. CTR mode etuukira bulungi okukola ku kyuma kya multiprocessor, nga blocks zisobola okusiba mu parallel.
GCM(Galois/Engeri y'okubala) ye symmetric-key block cipher mode of operation ekozesa universal hashing okuwa ensirifu ekakasiddwa. GCM etwalibwa ng’ey’obukuumi okusinga CBC mode kubanga erina okukakasa n’okukebera obulungi obuzimbibwamu era ekozesebwa nnyo ku nkola yaayo.

Padding

Ku modes za AES CBC ne ECB, padding eyinza okuba PKCS5PADDING ne NoPadding. Nga olina PKCS5Padding, omuguwa gwa byte 16 gujja kufulumya ekifulumizibwa kya byte 32 (omukubisa oguddako ogwa 16).

AES GCM PKCS5Padding kigambo kimu ne NoPadding kubanga GCM ye mode ya streaming nga tekyetaagisa padding. Ekiwandiiko ekikusike mu GCM kiwanvu kyokka nga ekiwandiiko ekitegeerekeka. N’olwekyo, nopadding mu butonde esunsuddwa.

AES Ekisumuluzo Sayizi

Enkola ya AES erina sayizi ya bulooka ya bit 128, awatali kulowooza oba obuwanvu bw’ekisumuluzo kyo buli bit 256, 192 oba 128. Mode ya cipher eya symmetric bwe yeetaaga IV, obuwanvu bwa IV bulina okwenkana obunene bwa block ya cipher. N’olwekyo, bulijjo olina okukozesa IV eya bits 128 (bytes 16) ne AES.

Ekisumuluzo eky'ekyama ekya AES

AES egaba bits 128, bits 192 ne bits 256 eza sayizi y’ekisumuluzo eky’ekyama okusobola okusiba. Bw’oba olondawo bits 128 okusiba, olwo ekisumuluzo eky’ekyama kirina okuba nga kya bits 16 obuwanvu ne bits 24 ne 32 ku bits 192 ne 256 ez’obunene bw’ekisumuluzo. Okugeza, singa sayizi y’ekisumuluzo eba 128, olwo ekisumuluzo eky’ekyama ekituufu kirina okuba eky’ennukuta 16 i.e., 16*8=128 bits

AES Encryption n'Okuggya Ensirifu Ku Mutimbagano