CryptoSys^TM API Manual

Function List    Functions by Category

Contents

• What is the CryptoSys API?
  
• Introduction
  
• Copyright Notice
  
• Background Basics
  
  • Block ciphers
    
  • One-way hash functions
    
  • Random number generators
    
  • Nonces - numbers used once
    
  • Cryptographic operations in Visual Basic
    
• Installation
  
• Using the DLL functions
  
• Compliance
  
• Bibliography
  
• Generic Functions
  
• Functions by Category
  
  • Blowfish
    
  • Data Encryption Standard (DES)
    
  • Triple Data Encryption Algorithm (Triple DES)
    
  • Advanced Encryption Standard (AES)
    
  • Secure Hash Algorithm (SHA-1)
    
  • Secure Hash Algorithm (SHA-256)
    
  • Secure Random Number Generator
    
• Function List
  
• Declaration Statements
  
• Error Codes
  
• Acknowledgements
  
• Revision History
  

What is the CryptoSys API?

The CryptoSys^TM API gives you the ability to call fast, efficient cryptographic functions from Visual Basic projects and VBA applications like Access, Excel and Word. It provides four of the major block cipher algorithms, two secure hash algorithms, the HMAC message authentication algorithm, and a secure random number generator.

The block cipher algorithms are the original Data Encryption Standard (DES); its currently approved replacement, Triple DES (TDEA); Bruce Schneier's Blowfish; and the Rijndael Block Cipher, which is the new Advanced Encryption Standard (AES) chosen by the US National Institute of Standards and Technology (NIST) . The one-way hash functions are the Secure Hash Algorithm (SHA-1) and the new SHA-256 version. The random number generator is based on Peter Gutmann's paper Software Generation of Practically Strong Random Numbers [GUTM] and complies with the latest Federal Information Processing Standards Publication FIPS PUB 140-2 Security Requirements for Cryptographic Modules [FIPS140].

The CryptoSys API functions allow you to encrypt, decrypt and hash data in a variety of formats, as well as generating secure random keys to use in your applications. Your input data can be in a byte array, a hexadecimal string, or a file. The functions can be called to process the data in a one-off manner, or you can call them block-by-block after initialising with the key. The cipher algorithms work in both Electronic Codebook (ECB) and Cipher Block Chaining (CBC) modes. You can generate random keys in a secure manner.

[Back to Top]

Introduction

It's assumed that you are familiar with the basics of cryptography and can program in Visual Basic to a reasonably advanced standard. For a good introduction to the principles of cryptography refer to Bruce Schneier's Applied Cryptography [SCHN] or, for a more advanced treatment, see Handbook of Applied Cryptography by Menezes, van Oorschot and Vanstone [MENE]. For a detailed explanation on accessing DLLs from Visual Basic, see the Access 97/2000 Developer's Handbook by Getz, Litwin and Gilbert [GE97] [GE2K].

The API functions in the CryptoSys package are called in a similar manner to the way you call Windows API functions from Visual Basic. They have the advantage of much greater speed and better security than interpreted Visual Basic code. You need to install the file on the client computer and declare the functions in your VB project (just copy and paste into a module and it's done). A full list of the declarations is provided.

[Back to Top]

Copyright Notice

The CryptoSys^TM API system and this document were written by David Ireland and are copyright (c) 2001 by DI Management Services Pty Limited, all rights reserved.

The Personal version of CryptoSys API system may be used for personal use and for reasonable testing purposes. Use for commercial or non-personal purposes requires the purchase of the Commercial version and a valid licence which may be obtained from DI Management at <www.di-mgt.com.au>. The program executables and this document may not be distributed or reproduced separately by any means without the express written permission of the author. The latest Personal version of CryptoSys may be obtained from <http://www.di-mgt.com.au/crypto.html>.

[Back to Top]

Background Basics

Block cipher algorithms

All block cipher algorithms operate on a fixed-length block of data to produce a seemingly-random output of the same size. The security of the encryption process depends on a secret key, the length of which depends on the particular algorithm. It should be impossible (strictly, computationally infeasible) to derive the plaintext from the resultant ciphertext without knowing the key.

In Electronic Codebook (ECB) mode, each block is encrypted independently. In Cipher Block Chaining (CBC) mode, an initialisation vector (IV) is added to the first block of plaintext before encryption and the resultant ciphertext is added to the next block of plaintext before encryption, and so on. Decryption is the reverse process. The IV does not need to be kept secret.

All block ciphers require their input to be an exact multiple of the block length. Any odd bytes need to be padded to the next multiple. For encrypting files, CryptoSys adds a padding string using the convention from RFC 2630 [RFC2630].

The block and key lengths supported in the CryptoSys API package are as follows:

One-way hash functions

A hash function is a cryptographic primitive used for digital signatures and password protection. It maps a message of arbitrary length to a fixed-length hash value or "message digest". A cryptographic hash should be one-way and collision-resistant. "One-way" means that, given an n-bit hash value, it should require work equivalent to about 2^ⁿ hash computations to find any message that hashes to that value. "Collision-resistant" means that finding any two messages which hash to the same value should require work equivalent to about 2^^n/2 hash computations. In other words, it should be computationally infeasible to find the original message from the digest or to create another message that produces the same result.

SHA-1 is a 160-bit (20-byte) hash function specified in FIPS PUB 180-1 Secure Hash Standard [FIPS180].

SHA-256 is the new draft standard intended as a companion for the new Advanced Encryption Standard (AES) to provide a similar level of enhanced security. SHA-256 is a 256-bit (32-byte) hash and is meant to provide 128 bits of security against collision attacks.

Secure Random Number Generator

Most cryptographic procedures require random numbers. Many security applications have failed or been severely compromised because their random number generators failed to be sufficiently random. In particular, the "rand" functions provided with popular programming packages like Visual Basic, C and Perl are not secure from a cryptographic point of view. For more details and examples see [GUTM].

Many procedures use a random session key to encrypt the body of the message. If this key is ever compromised - because the random numbers are predictable or can be manipulated before being generated - an opponent who has had access to your encrypted messages can decipher them at his leisure.

The design rules adopted in CryptoSys provide random numbers that are "practically strong", i.e. as close to the usual definition of cryptographically strong as is practically possible. The system derives a key using repeated applications of the SHA-1 hash function on a pool of random data in an algorithm equivalent to the ANSI X9.17 key generator. It creates and maintains a "pool of randomness" from a variety of changing operating system parameters including the current time, system clock, current window sizes and handles, memory state, hard disk usage, and other variables. At the programmer's option, the pool can be updated by the user immediately before generating a key with whatever secret or random keys the user wishes to type, together with samples of mouse movements and timings between key strokes.

CryptoSys protects the location of its randomness pool by constantly moving and concealing the data in memory. It uses SHA-1 to mix the pool thoroughly several times before generating a key.

Keys for DES and Triple-DES are generated with the odd parity bits set and weak and semi-weak keys are checked for and rejected.

Failsafe routines are built into CryptoSys in accordance with Federal Information Processing Standards Publication FIPS PUB 140-2 Security Requirements for Cryptographic Modules [FIPS140] whereby the system carries out a power-up statistical test on the first 20,000 bits generated and then carries out a continuous test on samples of subsequently-generated bytes to ensure nothing untoward is happening. If either of these tests fail, the system will stop and display a warning message as per the standard.

If you don't trust the system-generated key, you can always just mix and hash the key with SHA-1 a few more times.

Nonces

CryptoSys also lets you generate nonces - no, nothing to do with certain types of prison inmates - but a term used in security engineering meaning "number used once". Use a nonce where random but not-necessarily-unpredictable* numbers are required: e.g. for initialisation vectors, SSL cookies and random padding data. The principle here is that you should not compromise your important secure key generator by providing an opponent with any potentially useful information about what numbers it is generating. CryptoSys follows Peter Gutmann's guidelines from his paper [GUTM].

*Note that the nonce generator still passes the FIPS140-2 statistical tests for randomness [FIPS140].

Cryptographic operations in Visual Basic

Carrying out cryptographic functions in Visual Basic is complicated by the need to use non-printable characters. When you encrypt your plaintext message "We attack at dawn", the ciphertext will consist of characters that won't display or print properly. Out of the 256 possible values of a byte, only 95 can be printed. You can store all these 256 values in a VB String type, and access their values with the Asc() and Mid() functions. This is OK within a VB project but, unfortunately, you cannot guarantee that these strings will be passed properly to a DLL function. To complicate matters, VB normally stores strings internally as Unicode using two bytes for each character.

One solution is to use the Byte type, which was introduced especially to deal with this issue. The cryptographic operations all operate on arrays of Bytes. You need to convert plaintext strings to an array of bytes. For example, the four-character String "abc." can be represented by the four-byte array {97, 98, 99, 46}. Note that byte arrays, unlike strings, must be dimensioned before use.

Another solution is to represent the ascii values as a hexadecimal string. The string "abc." is represented by another string "6162632E", where 61, 62, 63, 2E are the values represented in hexadecimal. Each ascii character is represented as two hexadecimal digits between &H00 and &HFF. This method is particularly useful for carrying out validation tests on the cryptographic functions, because the tests are usually specified as hexadecimal strings.

The functions in CryptoSys allow you to use either Byte mode or Hex string mode. The block cipher and hash functions also work directly on files. To convert back-and-forth between String types and Byte arrays, use the standard (but not well-known) StrConv function.

    Dim i As Long
    Dim x() As Byte
    Dim str As String
    ' Convert string to ANSI byte array
    x = StrConv("abcdef", vbFromUnicode)
    For i = 0 To UBound(x)
       Debug.Print x(i);
    Next
    Debug.Print
    ' Convert back to a string
    str = StrConv(x(), vbUnicode)
    Debug.Print str

 97  98  99  100  101  102
abcdef

Note how the StrConv function avoids the need to declare the size of the byte array beforehand.

The VB module basByteUtils included with the CryptoSys package includes functions to create and convert strings of hexadecimal digits from byte arrays and normal strings.

[Back to Top]

Installation

Use the setup.exe file to install (and uninstall) CryptoSys onto your computer.

To call from a Visual Basic project or VBA application, just copy and paste the necessary declaration statements to a basic module in your application. A full list is provided in the module basCryptoSys.txt. You can then call the functions you require as you would a normal VB function. You do not make a reference to it from your project. Make sure you use the correct variable types.

[Back to Top]

Using the DLL Functions

Important Instructions

• Calling a DLL-based function incorrectly can cause GPF problems or machine crashes. Read these instructions carefully.
   
• Use variables of the correct type - e.g. don't use Integers where Longs are needed.
   
• Byte arrays must be at least the required length. Some functions have a pre-specified length (e.g. the key for a DES function is always 8 bytes long), others require the user to specify the length (e.g. keys for Blowfish).
   
• Functions that output to a String variable must have the result string already filled out to the required length. Using an empty string may cause a fatal error.

  To create a string of length 40 characters, you could do one of the following:

  	Dim sDigest As String * 40
  

  or

  	Dim sDigest As String
  	sDigest = String(40, " ")
  

• The context handles set by the _Init functions return zero if an error occurs. Always check the return value. Do not change the value of the context handle.
   
• The context handles for all four block ciphers are independent of each other.
   
• If you provide longer variables than expected, the extra data will be ignored. If you provide less, an unpredictable error will occur.
   
• The initialisation vectors should always be the same length as the block size.
   

Peculiarities

• In general, functions that pass hexadecimal strings as input do not need to specify their length. The exception is for the AES functions, which always require the user to specify both the key and block bit lengths.
   
• All functions require the length of data strings to be passed as the number of bytes except the AES functions, which use the number of bits for the key.
   

[Back to Top]

Compliance

DES and Triple DES comply with:

• FIPS PUB 46-3, Data Encryption Standard (DES), [FIPS46].
• FIPS PUB 74, Guidelines for Implementing and Using the NBS Data Encryption Standard, [FIPS74].
• FIPS PUB 81, DES Modes of Operation, [FIPS81].
• NIST Special Publication 800-20 Modes of Operation Validation System for the Triple Data Encryption Algorithm [TMOVS]

AES complies with:

• AES Proposal: Rijndael, Joan Daemen and Vincent Rijmen, [RIJN].

The SHA algorithms comply with:

• FIPS PUB 180-1 Secure Hash Standard, [FIPS180].
• Draft FIPS PUB, Descriptions of SHA-256, SHA-384, and SHA-512, [FIPSSHS].

The random number key generator complies with:

• FIPS PUB 140-2 Security Requirements for Cryptographic Modules [FIPS140]

[Back to Top]

Bibliography

• [ANDE] Ross Anderson, Security Engineering, Wiley, 2001.
• [BCMO] NIST Special Publication 800-xx Recommendations for Block Cipher Modes of Operation, Methods and Techniques, Morris Dworkin, Draft version July 2001.
• [CLAR] Andrew Clark, Implementation Issues in Cryptography, <http://sky.fit.qut.edu.au/~aclark/itn536/>.
• [FIPS46] Federal Information Processing Standard (FIPS) 46-3, Data Encryption Standard (DES), U.S. Department Of Commerce/National Institute of Standards and Technology, 25 October 1999.
• [FIPS74] Federal Information Processing Standard 74 (FIPS PUB 74), Guidelines for Implementing and Using the NBS Data Encryption Standard, U.S. Department Of Commerce/National Institute of Standards and Technology, 1 April 1981.
• [FIPS81] Federal Information Processing Standard (FIPS 81), DES Modes of Operation, U.S. Department Of Commerce/National Institute of Standards and Technology, 2 December 1980.
• [FIPS140] Federal Information Processing Standards Publication FIPS PUB 140-2 Security Requirements for Cryptographic Modules, U.S. Department Of Commerce/National Institute of Standards and Technology, 25 May 2001.
• [FIPS180] Federal Information Processing Standards Publication FIPS PUB 180-1 Secure Hash Standard, U.S. Department Of Commerce/National Institute of Standards and Technology, 17 April 1995.
• [FIPSSHS] Draft Federal Information Processing Standard, Descriptions of SHA-256, SHA-384, and SHA-512, <http://csrc.nist.gov/cryptval/shs.html>, 12 October 2000.
• [GE97] Litwin, Getz and Gilbert, Access 97 Developer's Handbook, Sybex, 1997.
• [GE2K] Litwin, Getz and Gilbert, Access 2000 Developer's Handbook Volume 1: Desktop Edition, Sybex, 1999.
• [GUTM] Peter Gutmann, Software Generation of Practically Strong Random Numbers presented at the 1998 Usenix Security Symposium, and the updated version dated June 2000, both available from <http://www.cs.auckland.ac.nz/~pgut001/>.
• [HMAC] RFC 2104 HMAC: Keyed-Hashing for Message Authentication, Krawczyk, Bellare and Canetti, February 1997.
• [KOBL] Neal Koblitz, A Course in Number Theory and Cryptography, Second Edition, Springer-Verlag, 1994.
• [MENE] Menezes, van Oorschot and Vanstone, Handbook of Applied Cryptography, CRC Press LLC, 1997.
• [RFC2630] RFC 2630 Cryptographic Message Syntax, R. Housley, June 1999.
• [RIJN] Joan Daemen and Vincent Rijmen, AES Proposal: Rijndael, Document Version 2, 3 September 1999.
• [SCHN] Bruce Schneier, Applied Cryptography - Protocols, Algorithms and Source Code in C, second edition, John Wiley, 1996.
• [SIMO] Richard J Simon, Windows NT Win32 API SuperBible, Waite Group Press, 1997.
• [TMOVS] NIST Special Publication 800-20 Modes of Operation Validation System for the Triple Data Encryption Algorithm (TMOVS): Requirements and Procedures, April 2000.

[Back to Top]

Generic Functions

There are over 80 functions in the CryptoSys API package. Although this may seem daunting, there are only a few generic block cipher functions. The exact parameters of the functions may vary slightly depending on the particular block cipher, but the basic principles are the same. The generic functions are as follows:

_Hex - en/decrypt a hex string in one step
_HexMode - en/decrypt a hex string in one step using specified mode
_Bytes - en/decrypt a byte array in one step
_BytesMode - en/decrypt a byte array in one step using specified mode
_File - en/decrypt a file
_FileHex - en/decrypt a file using a hex key
_Init - initialise the context ready for repeated use
_InitHex - initialise the context using hex values ready for repeated use
_Update - en/decrypt the next set of data and update the context
_UpdateHex - en/decrypt the next set of data in hex and update the context
_Final - close the context
_Ecb - use existing key schedule to en/decrypt data in ECB mode
_EcbHex - use existing key schedule to en/decrypt hex data in ECB mode

_Hex

Examples:

will use the Blowfish algorithm to encrypt the plaintext represented in hex by "0123456789ABCDEF" using the key 0xFEDCBA9876543210.

will decrypt the ciphertext "0ACEAB0FC6A0A28D" using the same key.

_HexMode

Examples:

will use the Blowfish algorithm to encrypt the plaintext "7654321 Now is the time for " padded with 4 zeroes represented in hex using the key 0x0123456789ABCDEFF0E1D2C3B4A59687 in Cipher Block Chaining (CBC) mode with Initialisation Vector 0xFEDCBA9876543210.

will decrypt the ciphertext 0x6B77B4D63006DEE605B156E27403979358DEB9E7154616D959F1652BD5FF92CC using the same key and IV in the same mode.

_Bytes

_BytesMode

_File

_FileHex

Example:

will use the Blowfish algorithm to encrypt the file C:\hello.txt in ECB mode using the key 0xfedcba9876543210.

_Init

_InitHex

_Update

_UpdateHex

_Final

_Ecb

_EcbHex

[Back to Top]

Functions by Category

Blowfish

Blowfish can have a key of variable length from one to 56 bytes. The Byte variants need you to specify the key length, but the Hex variants will use whatever length is provided in the key hex string. The block and IV are always 8 bytes long.

Functions included for compatibilty with di_Blowfish.dll:

[Back to Top]

Data Encryption Standard (DES)

The key for DES is always 8 bytes long; the block length is 8 bytes. There is no need to specify the key length when calling the DES functions, but the input variables must be long enough. The parity bits in the key are ignored. There are no _Ecb functions provided for DES or TDEA because the key schedule is set up differently for encrypt and decrypt modes.

[Back to Top]

Triple Data Encryption Algorithm (TDEA, Triple DES)

The key for TDEA is always 24 bytes long; the block length is 8 bytes. There is no need to specify the key length when calling the TDEA functions, but the input variables must be long enough. The parity bits in the key are ignored. There are no _Ecb functions provided for TDEA.

[Back to Top]

Advanced Encryption Standard (AES)

The AES functions, for consistency, all require the user to specify both the key length and the block length in bits. All combinations of 128 or 192 or 256 bits for the key length and block length are permitted. The data must be provided in sufficient length to match the key and block lengths specified.

[Back to Top]

Secure Hash Algorithm (SHA-1)

All the SHA-1 functions output the message digest as a String in hexadecimal format. You must set the length of the output string to a minimum of 40 characters before calling the digest functions. See Calling the DLL Functions for instructions on how to do this.

[Back to Top]

Secure Hash Algorithm (SHA-256)

The SHA-256 functions are identical in syntax and usage to their SHA-1 equivalents, except the string to receive the message digest must be set to a minimum of 64 characters. See Calling the DLL Functions.

[Back to Top]

Secure Random Number Generator

RAN_KeyGenerate
RAN_KeyGenHex
RAN_DESKeyGenerate
RAN_DESKeyGenHex
RAN_TDEAKeyGenerate
RAN_TDEAKeyGenHex
RAN_Seed
RAN_Test
RAN_Nonce
RAN_NonceHex
RAN_Long

[Back to Top]

Function List - Alphabetical

[Back to Top]

BLF_Hex

Syntax

lngRet = BLF_Hex(sOutput, sInput, sKey, bEncrypt)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sOutput As String
    Dim sInput As String
    Dim sKey As String
    Dim sCorrect As String

    sInput = "0123456789ABCDEF"
    sKey = "FEDCBA9876543210"
    sCorrect = "0ACEAB0FC6A0A28D"
    ' Set sOutput to be same length as sInput
    sOutput = String(Len(sInput), " ")

    Debug.Print "KY="; sKey
    Debug.Print "PT="; sInput
    ' Encrypt in one-off process
    lngRet = BLF_Hex(sOutput, sInput, sKey, True)
    Debug.Print "CT="; sOutput
    Debug.Print "OK="; sCorrect

    ' Now decrypt back to plain text
    sInput = sOutput
    lngRet = BLF_Hex(sOutput, sInput, sKey, False)
    Debug.Print "P'="; sOutput

KY=FEDCBA9876543210
PT=0123456789ABCDEF
CT=0ACEAB0FC6A0A28D
OK=0ACEAB0FC6A0A28D
P'=0123456789ABCDEF

    Dim lngRet As Long
    Dim sHexData As String

    sHexData = "0001020304050607f8f9fafbfcfdfeff"

    Debug.Print "PT="; sHexData
    ' Encrypt in one-off process
    lngRet = BLF_Hex(sHexData, sHexData, "FEDCBA9876543210", True)
    Debug.Print "CT="; sHexData, lngRet
    Debug.Print "OK="; "7E9BD79A5E67E207CBBB647B9AE18273"

    ' Now decrypt back to plain text
    lngRet = BLF_Hex(sHexData, sHexData, "FEDCBA9876543210", False)
    Debug.Print "P'="; sHexData, lngRet

PT=0001020304050607f8f9fafbfcfdfeff
CT=7E9BD79A5E67E207CBBB647B9AE18273        0
OK=7E9BD79A5E67E207CBBB647B9AE18273
P'=0001020304050607F8F9FAFBFCFDFEFF        0

See Also

BLF_HexMode
[Back to Top]

BLF_HexMode

Syntax

lngRet = BLF_HexMode(sOutput, sInput, sHexKey, bEncrypt, sMode, sHexIV)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sOutput As String
    Dim sInput As String
    Dim sHexKey As String
    Dim sHexIV As String
    Dim sCorrect As String

    ' "7654321 Now is the time for " padded to 32 bytes with 4 nulls
    sInput = "37363534333231204E6F77206973207468652074696D6520666F722000000000"
    sCorrect = "6B77B4D63006DEE605B156E27403979358DEB9E7154616D959F1652BD5FF92CC"
    sHexKey = "0123456789ABCDEFF0E1D2C3B4A59687"
    sHexIV = "FEDCBA9876543210"
    ' Set sOutput to be same length as sInput
    sOutput = String(Len(sInput), " ")

    Debug.Print "KY="; sHexKey
    Debug.Print "IV="; sHexIV
    Debug.Print "PT="; sInput
    ' Encrypt in one-off process
    lngRet = BLF_HexMode(sOutput, sInput, sHexKey, True, "CBC", sHexIV)
    Debug.Print "CT="; sOutput, lngRet
    Debug.Print "OK="; sCorrect

    ' Now decrypt back to plain text
    sInput = sOutput
    lngRet = BLF_HexMode(sOutput, sInput, sHexKey, False, "CBC", sHexIV)
    Debug.Print "P'="; sOutput, lngRet

KY=0123456789ABCDEFF0E1D2C3B4A59687
IV=FEDCBA9876543210
PT=37363534333231204E6F77206973207468652074696D6520666F722000000000
CT=6B77B4D63006DEE605B156E27403979358DEB9E7154616D959F1652BD5FF92CC    0
OK=6B77B4D63006DEE605B156E27403979358DEB9E7154616D959F1652BD5FF92CC
P'=37363534333231204E6F77206973207468652074696D6520666F722000000000    0

See Also

BLF_Hex
[Back to Top]

BLF_Bytes

Syntax

lngRet = BLF_Bytes(aResult(0), aData(0), lngDataLen, aKey(0), lngKeyLen, bEncrypt)

Parameters

Returns

Remarks

Example

    Dim aData(15) As Byte   ' NB zero-based = 16 bytes
    Dim aResult(15) As Byte
    Dim aKey(7) As Byte
    Dim lngRet As Long
    Dim lngKeyLen As Long
    Dim lngDataLen As Long
    Dim sCorrect As String

    ' Convert hex strings to byte arrays
    lngKeyLen = bu_HexStr2Bytes("FEDCBA9876543210", aKey)
    lngDataLen = bu_HexStr2Bytes("0123456789ABCDEF0123456789ABCDEF", aData)
    sCorrect = "0ACEAB0FC6A0A28D0ACEAB0FC6A0A28D"

    Debug.Print "KY="; bu_Bytes2HexStr(aKey, lngKeyLen)
    Debug.Print "PT="; bu_Bytes2HexStr(aData, lngDataLen)
    ' Encrypt in one-off process
    lngRet = BLF_Bytes(aResult(0), aData(0), lngDataLen, aKey(0), lngKeyLen, True)
    Debug.Print "CT="; bu_Bytes2HexStr(aResult, lngDataLen)
    Debug.Print "OK="; sCorrect

    ' Now decrypt back to plain text
    lngRet = BLF_Bytes(aData(0), aResult(0), lngDataLen, aKey(0), lngKeyLen, False)
    Debug.Print "P'="; bu_Bytes2HexStr(aData, lngDataLen)

KY=FEDCBA9876543210
PT=0123456789ABCDEF0123456789ABCDEF
CT=0ACEAB0FC6A0A28D0ACEAB0FC6A0A28D
OK=0ACEAB0FC6A0A28D0ACEAB0FC6A0A28D
P'=0123456789ABCDEF0123456789ABCDEF

See Also

BLF_BytesMode
[Back to Top]

BLF_BytesMode

Syntax

lngRet = BLF_BytesMode(aResult(0), aData(0), lngDataLen, aKey(0), lngKeyLen, bEncrypt, sMode, aInitV(0))

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sOutput As String
    Dim sInput As String
    Dim sKey As String
    Dim sHexIV As String
    Dim sCorrect As String
    Dim lngKeyLen As Long
    Dim aKey() As Byte
    Dim aResult() As Byte
    Dim aData() As Byte
    Dim lngDataLen As Long
    Dim aInitV() As Byte
    Dim lngIVLen As Long

    sKey = "0123456789ABCDEFF0E1D2C3B4A59687"
    sHexIV = "FEDCBA9876543210"
    sInput = _
"37363534333231204E6F77206973207468652074696D6520666F722000000000"
    sCorrect = _
"6B77B4D63006DEE605B156E27403979358DEB9E7154616D959F1652BD5FF92CC"

    ' Convert to byte arrays
    lngKeyLen = Len(sKey) \ 2
    ReDim aKey(lngKeyLen)
    Call bu_HexStr2Bytes(sKey, aKey)
    lngDataLen = Len(sInput) \ 2
    ReDim aData(lngDataLen)
    Call bu_HexStr2Bytes(sInput, aData)
    ReDim aResult(lngDataLen)
    lngIVLen = Len(sHexIV) \ 2
    ReDim aInitV(lngIVLen)
    Call bu_HexStr2Bytes(sHexIV, aInitV)

    Debug.Print "KY="; bu_Bytes2HexStr(aKey, lngKeyLen)
    Debug.Print "IV="; bu_Bytes2HexStr(aInitV, lngIVLen)
    Debug.Print "PT="; bu_Bytes2HexStr(aData, lngDataLen)
    ' Encrypt in one-off process
    lngRet = BLF_BytesMode(aResult(0), aData(0), lngDataLen, aKey(0), _
        lngKeyLen, True, "CBC", aInitV(0))
    Debug.Print "CT="; bu_Bytes2HexStr(aResult, lngDataLen), lngRet
    Debug.Print "OK="; sCorrect

    ' Now decrypt back
    lngRet = BLF_BytesMode(aData(0), aResult(0), lngDataLen, aKey(0), _
        lngKeyLen, False, "cbc", aInitV(0))
    Debug.Print "P'="; bu_Bytes2HexStr(aData, lngDataLen), lngRet

KY=0123456789ABCDEFF0E1D2C3B4A59687
IV=FEDCBA9876543210
PT=37363534333231204E6F77206973207468652074696D6520666F722000000000
CT=6B77B4D63006DEE605B156E27403979358DEB9E7154616D959F1652BD5FF92CC    0
OK=6B77B4D63006DEE605B156E27403979358DEB9E7154616D959F1652BD5FF92CC
P'=37363534333231204E6F77206973207468652074696D6520666F722000000000    0

See Also

BLF_Bytes
[Back to Top]

BLF_File

Syntax

iRet = BLF_File(sFileOut, sFileIn, aKey(0), lngKeyLen, bEncrypt, sMode, aInitV(0))

Parameters

Returns

Remarks

Example

    Const MY_PATH As String = "C:\Test\"
    Dim aKey(7) As Byte
    Dim strFileOut As String, strFileIn As String, strFileChk As String
    Dim iRet As Long, nBytes As Long

    ' Construct full path names to files
    strFileIn = MY_PATH & "bigfile.dat"
    strFileOut = MY_PATH & "bigfile.ecb"
    strFileChk = MY_PATH & "bigfile.chk"

    ' Create the key as an array of bytes
    ' This creates an array of 8 bytes {&HFE, &HDC, ... &H10}
    nBytes = bu_HexStr2Bytes("fedcba9876543210", aKey)

    ' Encrypt plaintext file to cipher
    iRet = BLF_File(strFileOut, strFileIn, aKey(0), nBytes, _
        True, "ECB", vbNullString)
    Debug.Print iRet

    ' Now decrypt it
    iRet = BLF_File(strFileChk, strFileOut, aKey(0), nBytes, _
        False, "ECB", vbNullString)
    Debug.Print iRet

See Also

BLF_FileHex
[Back to Top]

BLF_FileHex

Syntax

lngRet = BLF_FileHex(sFileOut, sFileIn, sHexKey, bEncrypt, sMode, sHexIV)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long

    ' Encrypt plaintext file to cipher
    lngRet = BLF_FileHex("bigfile.cbc", "bigfile.dat", _
        "fedcba9876543210fedcba9876543210", True, "CBC", "0123456789abcdef")
    Debug.Print lngRet

See Also

BLF_File
[Back to Top]

BLF_InitHex

Syntax

hContext = BLF_InitHex(sKey, bEncrypt, sMode, sInitV)

Parameters

Returns

Remarks

Example

See BLF_UpdateHex.

See Also

BLF_Init BLF_UpdateHex BLF_Update BLF_Final
[Back to Top]

BLF_Init

Syntax

hContext = BLF_Init(aKey(0), lngKeyLen, bEncrypt, sMode, aInitV(0))

Parameters

Returns

Remarks

Example

See BLF_Update.

See Also

BLF_InitHex BLF_UpdateHex BLF_Update BLF_Final
[Back to Top]

BLF_UpdateHex

Syntax

lngRet = BLF_UpdateHex(hContext, sHexString)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim hContext As Long
    Dim sKey As String
    Dim sHexString As String
    Dim sCorrect As String

    sKey = "0123456789abcdef"
    Debug.Print "KY="; sKey

    ' Initialise the context
    hContext = BLF_InitHex(sKey, True, "ECB", vbNullString)
    If hContext = 0 Then
        ' Always check for error
        MsgBox "Unable to initialise BLF context", vbCritical
        Exit Function
    End If

    sHexString = "4e6f772069732074"
    Debug.Print "PT="; sHexString
    lngRet = BLF_UpdateHex(hContext, sHexString)
    Debug.Print "CT="; sHexString
    Debug.Print "OK="; "cb08e682c67e32e2"

    sHexString = "68652074696d6520666f7220616c6c20"
    Debug.Print "PT="; sHexString
    lngRet = BLF_UpdateHex(hContext, sHexString)
    Debug.Print "CT="; sHexString
    Debug.Print "OK="; "8fcb010ac2ce9b1d9c4538762e33b52f"

    lngRet = BLF_Final(hContext)

KY=0123456789abcdef
PT=4e6f772069732074
CT=CB08E682C67E32E2
OK=cb08e682c67e32e2
PT=68652074696d6520666f7220616c6c20
CT=8FCB010AC2CE9B1D9C4538762E33B52F
OK=8fcb010ac2ce9b1d9c4538762e33b52f

See Also

BLF_Init BLF_InitHex BLF_Update BLF_Final
[Back to Top]

BLF_Update

Syntax

lngRet = BLF_Update(hContext, aData(0), lngDataLen)

Parameters

Returns

Remarks

Example

    Const ncBLKLEN As Integer = 8
    Dim lngRet As Long
    Dim hContext As Long
    Dim aKey(15) As Byte
    Dim aData(7) As Byte
    Dim lngDataLen As Long
    Dim aInitV(7) As Byte
    Dim sInput As String
    Dim sOutput As String
    Dim sCorrect As String
    Dim lngKeyLen As Long
    Dim nBlocks As Integer, i As Integer

    ' Input is an ascii string padded with zeroes
    sInput = "7654321 Now is the time for " & String(4, Chr(0))
    ' Set key and IV in byte arrays
    lngKeyLen = bu_HexStr2Bytes("0123456789ABCDEFF0E1D2C3B4A59687", aKey)
    Call bu_HexStr2Bytes("FEDCBA9876543210", aInitV)
    sCorrect = "6B77B4D63006DEE605B156E27403979358DEB9E7154616D959F1652BD5FF92CC"
    Debug.Print "KY="; bu_Bytes2HexStr(aKey, lngKeyLen)
    Debug.Print "IV="; bu_Bytes2HexStr(aInitV, 8)

    ' Initialise context
    hContext = BLF_Init(aKey(0), lngKeyLen, True, "CBC", aInitV(0))
    If hContext = 0 Then
        ' Always check for error
        MsgBox "Unable to initialise BLF context", vbCritical
        Exit Function
    End If

    ' Encrypt in 8-byte blocks
    sOutput = ""
    nBlocks = Len(sInput) \ ncBLKLEN
    For i = 0 To nBlocks - 1
        lngDataLen = bu_String2Bytes(Mid(sInput, _
            (i * ncBLKLEN) + 1, ncBLKLEN), aData)
        Debug.Print "PT="; bu_Bytes2HexStr(aData, lngDataLen)

        lngRet = BLF_Update(hContext, aData(0), lngDataLen)

        Debug.Print "CT="; bu_Bytes2HexStr(aData, lngDataLen); lngRet
        sOutput = sOutput & bu_Bytes2String(aData, lngDataLen)
    Next

    lngRet = BLF_Final(hContext)
    Debug.Print "OU="; bu_Str2Hex(sOutput)
    Debug.Print "OK="; sCorrect

KY=0123456789ABCDEFF0E1D2C3B4A59687
IV=FEDCBA9876543210
PT=3736353433323120
CT=6B77B4D63006DEE6 0
PT=4E6F772069732074
CT=05B156E274039793 0
PT=68652074696D6520
CT=58DEB9E7154616D9 0
PT=666F722000000000
CT=59F1652BD5FF92CC 0
OU=6B77B4D63006DEE605B156E27403979358DEB9E7154616D959F1652BD5FF92CC
OK=6B77B4D63006DEE605B156E27403979358DEB9E7154616D959F1652BD5FF92CC

See Also

BLF_Init BLF_InitHex BLF_UpdateHex BLF_Final
[Back to Top]

BLF_Ecb

Syntax

lngRet = BLF_Ecb(hContext, aData(0), lngDataLen, bEncrypt)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim hContext As Long
    Dim aKey(15) As Byte
    Dim aData(7) As Byte
    Dim lngDataLen As Long
    Dim aInitV(7) As Byte
    Dim lngKeyLen As Long
    Dim nBlocks As Integer, i As Integer
    Dim aECBWork(15) As Byte

    ' Set up key and IV arrays
    ' ...

    hContext = BLF_Init(aKey(0), lngKeyLen, True, "CBC", aInitV(0))

    For i = 0 To nBlocks - 1
        ' ...
         lngRet = BLF_Update(hContext, aData(0), lngDataLen)

        ' Sneak in here and use ECB mode in both directions
        lngRet = BLF_Ecb(hContext, aECBWork(0), 16&, True)
        lngRet = BLF_Ecb(hContext, aECBWork(0), 16&, False)

    Next
    lngRet = BLF_Final(hContext)

See Also

BLF_EcbHex
[Back to Top]

BLF_EcbHex

Syntax

lngRet = BLF_EcbHex(hContext, sHexBlock, bEncrypt)

Parameters

Returns

Remarks

Example

See Also

BLF_Ecb
[Back to Top]

BLF_Final

Syntax

lngRet = BLF_Final(hContext)

Parameters

Returns

Remarks

The handle hContext must have been set up by an earlier call to BLF_Init or BLF_InitHex.

Example

See BLF_UpdateHex.

See Also

BLF_Init BLF_InitHex BLF_UpdateHex BLF_Update
[Back to Top]

DES_Hex

Syntax

lngRet = DES_Hex(sOutput, sInput, sKey, bEncrypt)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sOutput As String
    Dim sInput As String
    Dim sKey As String
    Dim sCorrect As String

    ' "Now is t" in hex
    sInput = "4e6f772069732074"
    sKey = "0123456789abcdef"
    sCorrect = "3fa40e8a984d4815"
    ' Set sOutput to be same length as sInput
    sOutput = String(Len(sInput), " ")

    Debug.Print "KY="; sKey
    Debug.Print "PT="; sInput
    ' Encrypt in one-off process
    lngRet = DES_Hex(sOutput, sInput, sKey, True)
    Debug.Print "CT="; sOutput
    Debug.Print "OK="; sCorrect

    ' Now decrypt back to plain text
    sInput = sOutput
    lngRet = DES_Hex(sOutput, sInput, sKey, False)
    Debug.Print "P'="; sOutput

KY=0123456789abcdef
PT=4e6f772069732074
CT=3FA40E8A984D4815
OK=3fa40e8a984d4815
P'=4E6F772069732074

See Also

DES_HexMode RAN_DESKeyGenHex
[Back to Top]

DES_HexMode

Syntax

lngRet = DES_HexMode(sOutput, sInput, sHexKey, bEncrypt, sMode, sHexIV)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sOutput As String
    Dim sInput As String
    Dim sKey As String
    Dim sInitV As String
    Dim sCorrect As String

    ' "Now is the time for all " in hex
    sInput = "4e6f77206973207468652074696d6520666f7220616c6c20"
    sKey = "0123456789abcdef"
    sInitV = "1234567890abcdef"
    sCorrect = "e5c7cdde872bf27c43e934008c389c0f683788499a7c05f6"
    ' Set sOutput to be same length as sInput
    sOutput = String(Len(sInput), " ")

    Debug.Print "KY="; sKey
    Debug.Print "IV="; sInitV
    Debug.Print "PT="; sInput
    ' Encrypt in one-off process
    lngRet = DES_HexMode(sOutput, sInput, sKey, True, "CBC", sInitV)
    Debug.Print "CT="; sOutput
    Debug.Print "OK="; sCorrect

    ' Now decrypt back to plain text
    sInput = sOutput
    lngRet = DES_HexMode(sOutput, sInput, sKey, False, "CBC", sInitV)
    Debug.Print "P'="; sOutput

KY=0123456789abcdef
IV=1234567890abcdef
PT=4e6f77206973207468652074696d6520666f7220616c6c20
CT=E5C7CDDE872BF27C43E934008C389C0F683788499A7C05F6
OK=e5c7cdde872bf27c43e934008c389c0f683788499a7c05f6
P'=4E6F77206973207468652074696D6520666F7220616C6C20

See Also

DES_Hex RAN_DESKeyGenHex
[Back to Top]

DES_Bytes

Syntax

lngRet = DES_Bytes(aResult(0), aData(0), lngDataLen, aKey(0), bEncrypt)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sInput As String
    Dim sKey As String
    Dim sCorrect As String
    Dim lngKeyLen As Long
    Dim aKey() As Byte
    Dim aResult() As Byte
    Dim aData() As Byte
    Dim lngDataLen As Long

    ' Define test vectors in hex (from FIPS 81)
    sKey = "0123456789abcdef"
    sInput = "4e6f77206973207468652074696d6520666f7220616c6c20"
    sCorrect = "3FA40E8A984D48156A271787AB8883F9893D51EC4B563B53"

    ' Convert to byte arrays
    lngKeyLen = Len(sKey) \ 2
    ReDim aKey(lngKeyLen)
    Call bu_HexStr2Bytes(sKey, aKey)
    lngDataLen = Len(sInput) \ 2
    ReDim aData(lngDataLen)
    Call bu_HexStr2Bytes(sInput, aData)
    ReDim aResult(lngDataLen)

    Debug.Print "KY="; bu_Bytes2HexStr(aKey, lngKeyLen)
    Debug.Print "PT="; bu_Bytes2HexStr(aData, lngDataLen)
    ' Encrypt in one-off process
    lngRet = DES_Bytes(aResult(0), aData(0), lngDataLen, aKey(0), True)
    Debug.Print "CT="; bu_Bytes2HexStr(aResult, lngDataLen); lngRet
    Debug.Print "OK="; sCorrect

    ' Now decrypt back
    lngRet = DES_Bytes(aData(0), aResult(0), lngDataLen, aKey(0), False)
    Debug.Print "P'="; bu_Bytes2HexStr(aData, lngDataLen); lngRet

KY=0123456789ABCDEF
PT=4E6F77206973207468652074696D6520666F7220616C6C20
CT=3FA40E8A984D48156A271787AB8883F9893D51EC4B563B53 0
OK=3FA40E8A984D48156A271787AB8883F9893D51EC4B563B53
P'=4E6F77206973207468652074696D6520666F7220616C6C20 0

See Also

DES_BytesMode
[Back to Top]

DES_BytesMode

Syntax

lngRet = DES_BytesMode(aResult(0), aData(0), lngDataLen, aKey(0), bEncrypt, sMode, aInitV(0))

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sOutput As String
    Dim sInput As String
    Dim sKey As String
    Dim sHexIV As String
    Dim sCorrect As String
    Dim lngKeyLen As Long
    Dim lngDataLen As Long
    Dim lngIVLen As Long
    Dim aKey() As Byte
    Dim aResult() As Byte
    Dim aData() As Byte
    Dim aInitV() As Byte

    sKey = "0123456789abcdef"
    sHexIV = "1234567890abcdef"
    sInput = "Now is the time for all "
    sCorrect = "e5c7cdde872bf27c43e934008c389c0f683788499a7c05f6"

    ' Convert hex strings to byte arrays
    lngKeyLen = Len(sKey) \ 2
    ReDim aKey(lngKeyLen)
    Call bu_HexStr2Bytes(sKey, aKey)
    lngIVLen = Len(sHexIV) \ 2
    ReDim aInitV(lngIVLen)
    Call bu_HexStr2Bytes(sHexIV, aInitV)

    ' Convert string to byte array and dimension aResult array
    aData() = StrConv(sInput, vbFromUnicode)
    lngDataLen = UBound(aData) + 1
    ReDim aResult(lngDataLen - 1)

    Debug.Print "KY="; bu_Bytes2HexStr(aKey, lngKeyLen)
    Debug.Print "IV="; bu_Bytes2HexStr(aInitV, lngIVLen)
    Debug.Print "PT="; "["; sInput; "]"
    ' Encrypt in one-off process
    lngRet = DES_BytesMode(aResult(0), aData(0), lngDataLen, _
        aKey(0), True, "CBC", aInitV(0))
    Debug.Print "CT="; bu_Bytes2HexStr(aResult, lngDataLen); lngRet
    Debug.Print "OK="; sCorrect

    ' Now decrypt back
    lngRet = DES_BytesMode(aData(0), aResult(0), lngDataLen, _
        aKey(0), False, "cbc", aInitV(0))
    sOutput = StrConv(aData(), vbUnicode)
    Debug.Print "P'="; "["; sOutput; "]"; lngRet

KY=0123456789ABCDEF
IV=1234567890ABCDEF
PT=[Now is the time for all ]
CT=E5C7CDDE872BF27C43E934008C389C0F683788499A7C05F6 0
OK=e5c7cdde872bf27c43e934008c389c0f683788499a7c05f6
P'=[Now is the time for all ] 0

See Also

DES_Bytes
[Back to Top]

DES_File

Syntax

iRet = DES_File(sFileOut, sFileIn, aKey(0), bEncrypt, sMode, aInitV(0))

Parameters

Returns

Remarks

Example

    Const MY_PATH As String = "C:\Test\"
    Dim aKey(7) As Byte
    Dim strFileOut As String, strFileIn As String, strFileChk As String
    Dim lngRet As Long, nBytes As Long

    ' Construct full path names to files
    strFileIn = MY_PATH & "hello.txt"
    strFileOut = MY_PATH & "hello.enc"
    strFileChk = MY_PATH & "hello.chk"

    ' Create the key as an array of bytes
    ' This creates an array of 8 bytes {&HFE, &HDC, ... &H10}
    nBytes = bu_HexStr2Bytes("fedcba9876543210", aKey)

    ' Encrypt plaintext file to cipher
    ' Output file = 16-byte ciphertext file hello.enc
    lngRet = DES_File(strFileOut, strFileIn, aKey(0), _
        True, "ECB", vbNullString)
    Debug.Print lngRet

    ' Now decrypt it
    lngRet = DES_File(strFileChk, strFileOut, aKey(0), _
        False, "ECB", vbNullString)
    Debug.Print lngRet

See Also

DES_FileHex
[Back to Top]

DES_FileHex

Syntax

lngRet = DES_FileHex(sFileOut, sFileIn, sHexKey, bEncrypt, sMode, sHexIV)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long

    lngRet = DES_FileHex("bigfile.cbc", "bigfile.dat", _
        "fedcba9876543210", True, "CBC", "0123456789abcdef")
    Debug.Print lngRet

    ' and decrypt it as a check
    lngRet = DES_FileHex("bigfile.chk", "bigfile.cbc", _
        "fedcba9876543210fedcba9876543210", False, "CBC", "0123456789abcdef")
    Debug.Print lngRet

See Also

DES_File
[Back to Top]

DES_InitHex

Syntax

hContext = DES_InitHex(sHexKey, bEncrypt, sMode, sHexIV)

Parameters

Returns

Remarks

Example

See DES_UpdateHex.

See Also

DES_Init DES_UpdateHex DES_Update DES_Final
[Back to Top]

DES_Init

Syntax

hContext = DES_Init(sHexKey, bEncrypt, sMode, sHexIV)

Parameters

Returns

Remarks

Example

See DES_Update.

See Also

DES_InitHex DES_UpdateHex DES_Update DES_Final
[Back to Top]

DES_Update

Syntax

lngRet = DES_Update(hContext, aData(0), lngDataLen)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim hContext As Long
    Dim sInput As String
    Dim sCorrect As String
    Dim lngKeyLen As Long
    Dim aKey() As Byte
    Dim aData() As Byte
    Dim lngDataLen As Long

    sInput = "Now is the time for all "
    sCorrect = "3fa40e8a984d43156a271787ab8883f9893d51ec4b563b53"

    ' Setup byte arrays and lengths
    ReDim aKey(7)
    lngKeyLen = bu_HexStr2Bytes("0123456789abcdef", aKey())
    aData() = StrConv(sInput, vbFromUnicode)
    lngDataLen = UBound(aData) + 1
    Debug.Print "KY="; bu_Bytes2HexStr(aKey, lngKeyLen)
    Debug.Print "PT="; bu_Bytes2HexStr(aData, lngDataLen)
    ' Initialise context
    hContext = DES_Init(aKey(0), True, "ECB", vbNullString)

    ' Process the data
    lngRet = DES_Update(hContext, aData(0), lngDataLen)
    Debug.Print "CT="; bu_Bytes2HexStr(aData, lngDataLen), lngRet
    Debug.Print "OK="; sCorrect

    lngRet = DES_Final(hContext)

    ' Now decrypt it using Init-Update-Final
    hContext = DES_Init(aKey(0), False, "ECB", vbNullString)

    lngRet = DES_Update(hContext, aData(0), lngDataLen)
    Debug.Print "P'="; bu_Bytes2HexStr(aData, lngDataLen), lngRet
    Debug.Print "P'=["; StrConv(aData(), vbUnicode); "]"

    lngRet = DES_Final(hContext)

KY=0123456789ABCDEF
PT=4E6F77206973207468652074696D6520666F7220616C6C20
CT=3FA40E8A984D48156A271787AB8883F9893D51EC4B563B53      0
OK=3fa40e8a984d43156a271787ab8883f9893d51ec4b563b53
P'=4E6F77206973207468652074696D6520666F7220616C6C20      0
P'=[Now is the time for all ]

See Also

DES_Init DES_InitHex DES_UpdateHex DES_Final
[Back to Top]

DES_UpdateHex

Syntax

lngRet = DES_UpdateHex(hContext, sHexString)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim hContext As Long
    Dim sKey As String
    Dim sHexString As String
    Dim sCorrect As String

    sKey = "0123456789abcdef"
    Debug.Print "KY="; sKey

    ' Initialise the context
    hContext = DES_InitHex(sKey, True, "ECB", vbNullString)
    If hContext = 0 Then
        ' Always check for error
        MsgBox "Unable to initialise DES context", vbCritical
        Exit Function
    End If

    sHexString = "4e6f772069732074"
    Debug.Print "PT="; sHexString
    lngRet = DES_UpdateHex(hContext, sHexString)
    Debug.Print "CT="; sHexString
    Debug.Print "OK="; "3fa40e8a984d4815"

    sHexString = "68652074696d6520666f7220616c6c20"
    Debug.Print "PT="; sHexString
    lngRet = DES_UpdateHex(hContext, sHexString)
    Debug.Print "CT="; sHexString
    Debug.Print "OK="; "6a271787ab8883f9893d51ec4b563b53"

    lngRet = DES_Final(hContext)

KY=0123456789abcdef
PT=4e6f772069732074
CT=3FA40E8A984D4815
OK=3fa40e8a984d4815
PT=68652074696d6520666f7220616c6c20
CT=6A271787AB8883F9893D51EC4B563B53
OK=6a271787ab8883f9893d51ec4b563b53

See Also

DES_Init DES_InitHex DES_Update DES_Final
[Back to Top]

DES_Final

Syntax

lngRet = DES_Final(hContext)

Parameters

Returns

Remarks

Example

See DES_UpdateHex.

See Also

DES_Init DES_InitHex DES_UpdateHex DES_Update
[Back to Top]

TDEA_Hex

Syntax

lngRet = TDEA_Hex(sOutput, sInput, sKey, bEncrypt)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sOutput As String
    Dim sInput As String
    Dim sKey As String
    Dim bEncrypt As Boolean
    Dim sCorrect As String

    sInput = "8000000000000000"
    sKey = "010101010101010101010101010101010101010101010101"
    sCorrect = "95F8A5E5DD31D900"
    ' Set sOutput to be same length as sInput
    sOutput = String(Len(sInput), " ")

    Debug.Print "KY="; sKey
    Debug.Print "PT="; sInput
    ' Encrypt
    lngRet = TDEA_Hex(sOutput, sInput, sKey, bEncrypt:=True)
    Debug.Print "CT="; sOutput, "Return value="; lngRet
    Debug.Print "OK="; sCorrect

    ' Decrypt back
    sInput = sOutput
    lngRet = TDEA_Hex(sOutput, sInput, sKey, bEncrypt:=False)
    Debug.Print "P'="; sOutput, "Return value="; lngRet

KY=010101010101010101010101010101010101010101010101
PT=8000000000000000
CT=95F8A5E5DD31D900         Return value= 0
OK=95F8A5E5DD31D900
P'=8000000000000000         Return value= 0

    Dim lngRet As Long
    Dim sBlock As String
    Dim sKey As String
    Dim sCorrect As String
    Dim i As Integer

    sBlock = "4e6f772069732074"
    sKey = "0123456789abcdef" & _
            "23456789abcdef01" & _
            "456789abcdef0123"
    sCorrect = "dd17e8b8b437d232"

    Debug.Print "TDEA Monte Carlo TECB Mode Encrypt:"
    Debug.Print "KY="; sKey
    Debug.Print "PT="; sBlock
    ' Do 10,000 times
    For i = 0 To 9999
        lngRet = TDEA_Hex(sBlock, sBlock, sKey, bEncrypt:=True)
    Next
    Debug.Print "CT="; sBlock
    Debug.Print "OK="; sCorrect

TDEA Monte Carlo TECB Mode Encrypt:
KY=0123456789abcdef23456789abcdef01456789abcdef0123
PT=4e6f772069732074
CT=DD17E8B8B437D232
OK=dd17e8b8b437d232

See Also

TDEA_HexMode RAN_TDEAKeyGenHex
[Back to Top]

TDEA_HexMode

Syntax

lngRet = TDEA_HexMode(sOutput, sInput, sHexKey, bEncrypt, sMode, sHexIV)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sOutput As String
    Dim sInput As String
    Dim sKey As String
    Dim sInitV As String
    Dim bEncrypt As Boolean
    Dim sCorrect As String

    sInput = "5468697320736F6D652073616D706520636F6E74656E742E0808080808080808"
    sKey = "737C791F25EAD0E04629254352F7DC6291E5CB26917ADA32"
    sInitV = "B36B6BFB6231084E"
    sCorrect = "d76fd1178fbd02f84231f5c1d2a2f74a4159482964f675248254223daf9af8e4"
    ' Set sOutput to be same length as sInput
    sOutput = String(Len(sInput), " ")

    Debug.Print "KY="; sKey
    Debug.Print "PT="; sInput
    lngRet = TDEA_HexMode(sOutput, sInput, sKey, True, "CBC", sInitV)
    Debug.Print "CT="; sOutput; lngRet
    Debug.Print "OK="; sCorrect

    sInput = sOutput
    lngRet = TDEA_HexMode(sOutput, sInput, sKey, False, "CBC", sInitV)
    Debug.Print "P'="; sOutput; lngRet

KY=737C791F25EAD0E04629254352F7DC6291E5CB26917ADA32
PT=5468697320736F6D652073616D706520636F6E74656E742E0808080808080808
CT=D76FD1178FBD02F84231F5C1D2A2F74A4159482964F675248254223DAF9AF8E4 0
OK=d76fd1178fbd02f84231f5c1d2a2f74a4159482964f675248254223daf9af8e4
P'=5468697320736F6D652073616D706520636F6E74656E742E0808080808080808 0

See Also

TDEA_Hex RAN_TDEAKeyGenHex
[Back to Top]

TDEA_Bytes

Syntax

lngRet = TDEA_Bytes(aResult(0), aData(0), lngDataLen, aKey(0), bEncrypt)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sInput As String
    Dim sKey As String
    Dim sCorrect As String
    Dim lngKeyLen As Long
    Dim aKey() As Byte
    Dim aResult() As Byte
    Dim aData() As Byte
    Dim lngDataLen As Long

    ' Define test vectors in hex
    sKey = "0123456789abcdeffedcba987654321089abcdef01234567"
    sInput = "0123456789abcde70123456789abcde7"
    sCorrect = "de0b7c06ae5e0ed5de0b7c06ae5e0ed5"

    ' Convert to byte arrays
    lngKeyLen = Len(sKey) \ 2
    ReDim aKey(lngKeyLen)
    Call bu_HexStr2Bytes(sKey, aKey)
    lngDataLen = Len(sInput) \ 2
    ReDim aData(lngDataLen)
    Call bu_HexStr2Bytes(sInput, aData)
    ReDim aResult(lngDataLen)

    Debug.Print "KY="; bu_Bytes2HexStr(aKey, lngKeyLen)
    Debug.Print "PT="; bu_Bytes2HexStr(aData, lngDataLen)
    ' Encrypt in one-off process
    lngRet = TDEA_Bytes(aResult(0), aData(0), lngDataLen, aKey(0), True)
    Debug.Print "CT="; bu_Bytes2HexStr(aResult, lngDataLen); lngRet
    Debug.Print "OK="; sCorrect

    ' Now decrypt back
    lngRet = TDEA_Bytes(aData(0), aResult(0), lngDataLen, aKey(0), False)
    Debug.Print "P'="; bu_Bytes2HexStr(aData, lngDataLen); lngRet

KY=0123456789ABCDEFFEDCBA987654321089ABCDEF01234567
PT=0123456789ABCDE70123456789ABCDE7
CT=DE0B7C06AE5E0ED5DE0B7C06AE5E0ED5 0
OK=de0b7c06ae5e0ed5de0b7c06ae5e0ed5
P'=0123456789ABCDE70123456789ABCDE7 0

See Also

TDEA_BytesMode
[Back to Top]

TDEA_BytesMode

Syntax

lngRet = TDEA_BytesMode(aResult(0), aData(0), lngDataLen, aKey(0), bEncrypt, sMode, aInitV(0))

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sOutput As String
    Dim sInput As String
    Dim sKey As String
    Dim sHexIV As String
    Dim sCorrect As String
    Dim lngKeyLen As Long
    Dim lngDataLen As Long
    Dim lngIVLen As Long
    Dim aKey() As Byte
    Dim aResult() As Byte
    Dim aData() As Byte
    Dim aInitV() As Byte

    sKey = "0123456789abcdeffedcba987654321089abcdef01234567"
    sHexIV = "1234567890abcdef"
    sInput = "Now is the time for all "
    sCorrect = "204011f986e35647199e47af391620c5bb9a5bcfc86db0bb"

    ' Convert hex strings to byte arrays
    lngKeyLen = Len(sKey) \ 2
    ReDim aKey(lngKeyLen)
    Call bu_HexStr2Bytes(sKey, aKey)
    lngIVLen = Len(sHexIV) \ 2
    ReDim aInitV(lngIVLen)
    Call bu_HexStr2Bytes(sHexIV, aInitV)

    ' Convert string to byte array and dimension aResult array
    aData() = StrConv(sInput, vbFromUnicode)
    lngDataLen = UBound(aData) + 1
    ReDim aResult(lngDataLen - 1)

    Debug.Print "KY="; bu_Bytes2HexStr(aKey, lngKeyLen)
    Debug.Print "IV="; bu_Bytes2HexStr(aInitV, lngIVLen)
    Debug.Print "PT="; "["; sInput; "]"
    ' Encrypt in one-off process
    lngRet = TDEA_BytesMode(aResult(0), aData(0), lngDataLen, _
        aKey(0), True, "CBC", aInitV(0))
    Debug.Print "CT="; bu_Bytes2HexStr(aResult, lngDataLen); lngRet
    Debug.Print "OK="; sCorrect

    ' Now decrypt back
    lngRet = TDEA_BytesMode(aData(0), aResult(0), lngDataLen, _
        aKey(0), False, "cbc", aInitV(0))
    sOutput = StrConv(aData(), vbUnicode)
    Debug.Print "P'="; "["; sOutput; "]"; lngRet

KY=0123456789ABCDEFFEDCBA987654321089ABCDEF01234567
IV=1234567890ABCDEF
PT=[Now is the time for all ]
CT=204011F986E35647199E47AF391620C5BB9A5BCFC86DB0BB 0
OK=204011f986e35647199e47af391620c5bb9a5bcfc86db0bb
P'=[Now is the time for all ] 0

See Also

TDEA_Bytes
[Back to Top]

TDEA_File

Syntax

iRet = TDEA_File(sFileOut, sFileIn, aKey(0), bEncrypt, sMode, aInitV(0))

Parameters

Returns

Remarks

Example

    Const MY_PATH As String = "C:\Test\"
    Dim aKey(23) As Byte
    Dim strFileOut As String, strFileIn As String, strFileChk As String
    Dim lngRet As Long, nBytes As Long

    ' Construct full path names to files
    strFileIn = MY_PATH & "hello.txt"
    strFileOut = MY_PATH & "hello.enc"
    strFileChk = MY_PATH & "hello.chk"

    ' Create the key as an array of bytes
    ' This creates an array of 24 bytes {&HFE, &HDC, ... &H10}
    nBytes = bu_HexStr2Bytes("fedcba9876543210fedcba9876543210fedcba9876543210", aKey)

    ' Encrypt plaintext file to cipher
    ' Output file = 16-byte ciphertext file hello.enc
    lngRet = TDEA_File(strFileOut, strFileIn, aKey(0), _
        True, "ECB", vbNullString)
    Debug.Print lngRet

    ' Now decrypt it
    lngRet = TDEA_File(strFileChk, strFileOut, aKey(0), _
        False, "ECB", vbNullString)
    Debug.Print lngRet

See Also

TDEA_FileHex
[Back to Top]

TDEA_FileHex

Syntax

lngRet = TDEA_FileHex(sFileOut, sFileIn, sHexKey, bEncrypt, sMode, sHexIV)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long

    lngRet = TDEA_FileHex("bigfile.cbc", "bigfile.dat", _
        "fedcba9876543210fedcba9876543210fedcba9876543210", _
        True, "CBC", "0123456789abcdef")
    Debug.Print lngRet

    ' and decrypt it as a check
    lngRet = TDEA_FileHex("bigfile.chk", "bigfile.cbc", _
        "fedcba9876543210fedcba9876543210fedcba9876543210", _
        False, "CBC", "0123456789abcdef")
    Debug.Print lngRet

See Also

TDEA_File
[Back to Top]

TDEA_InitHex

Syntax

hContext = TDEA_InitHex(sHexKey, bEncrypt, sMode, sHexIV)

Parameters

Returns

Remarks

Example

See TDEA_UpdateHex.

See Also

TDEA_Init TDEA_UpdateHex TDEA_Update TDEA_Final
[Back to Top]

TDEA_Init

Syntax

hContext = TDEA_Init(sHexKey, bEncrypt, sMode, sHexIV)

Parameters

Returns

Remarks

Example

See TDEA_Update.

See Also

TDEA_InitHex TDEA_UpdateHex TDEA_Update TDEA_Final
[Back to Top]

TDEA_Update

Syntax

lngRet = TDEA_Update(hContext, aData(0), lngDataLen)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim hContext As Long
    Dim sCorrect As String
    Dim j As Integer
    Dim aKey(23) As Byte
    Dim aInitV(7) As Byte
    Dim aBlock() As Byte
    Dim lngKeyLen As Long
    Dim lngBlkLen As Long
    Dim aNext() As Byte
    Dim aLast() As Byte

    aBlock() = StrConv("Now is t", vbFromUnicode)
    lngKeyLen = bu_HexStr2Bytes( _
        "0123456789abcdef23456789abcdef01456789abcdef0123", aKey())
    Call bu_HexStr2Bytes("1234567890abcdef", aInitV())
    sCorrect = "cb191f85d1ed8439"

    Debug.Print "TDEA Monte Carlo TCBC Mode Encrypt:"
    Debug.Print "KY="; bu_Bytes2HexStr(aKey(), lngKeyLen)
    Debug.Print "IV="; bu_Bytes2HexStr(aInitV(), 8)
    Debug.Print "PT="; bu_Bytes2HexStr(aBlock(), 8)

    hContext = TDEA_Init(aKey(0), True, "CBC", aInitV(0))
    If hContext = 0 Then
        Exit Function
    End If
    ' Do 10,000 times
    aNext() = aBlock()
    For j = 0 To 9999
        aBlock() = aNext()
        lngRet = TDEA_Update(hContext, aBlock(0), 8&)
        If j = 0 Then
            aNext() = aInitV()
        Else
            aNext() = aLast()
        End If
        aLast() = aBlock()
    Next
    Debug.Print "CT="; bu_Bytes2HexStr(aBlock(), 8)
    Debug.Print "OK="; sCorrect
    lngRet = TDEA_Final(hContext)

TDEA Monte Carlo TCBC Mode Encrypt:
KY=0123456789ABCDEF23456789ABCDEF01456789ABCDEF0123
IV=1234567890ABCDEF
PT=4E6F772069732074
CT=CB191F85D1ED8439
OK=cb191f85d1ed8439

See Also

TDEA_Init TDEA_InitHex TDEA_UpdateHex TDEA_Final
[Back to Top]

TDEA_UpdateHex

Syntax

lngRet = TDEA_UpdateHex(hContext, sHexString)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim hContext As Long
    Dim sBlock As String
    Dim sKey As String
    Dim sInitV As String
    Dim sNext As String
    Dim sLast As String
    Dim sCorrect As String
    Dim j As Integer

    sBlock = "4e6f772069732074"
    sKey = "0123456789abcdef" & _
            "23456789abcdef01" & _
            "456789abcdef0123"
    sInitV = "1234567890abcdef"
    sCorrect = "cb191f85d1ed8439"

    Debug.Print "TDEA Monte Carlo TCBC Mode Encrypt:"
    Debug.Print "KY="; sKey
    Debug.Print "IV="; sInitV
    Debug.Print "PT="; sBlock

    hContext = TDEA_InitHex(sKey, True, "CBC", sInitV)
    If hContext = 0 Then
        Exit Function
    End If
    ' Do 10,000 times
    sNext = sBlock
    For j = 0 To 9999
        sBlock = sNext
        lngRet = TDEA_UpdateHex(hContext, sBlock)
        If j = 0 Then
            sNext = sInitV
        Else
            sNext = sLast
        End If
        sLast = sBlock
    Next
    Debug.Print "CT="; sBlock
    Debug.Print "OK="; sCorrect
    lngRet = TDEA_Final(hContext)

TDEA Monte Carlo TCBC Mode Encrypt:
KY=0123456789abcdef23456789abcdef01456789abcdef0123
IV=1234567890abcdef
PT=4e6f772069732074
CT=CB191F85D1ED8439
OK=cb191f85d1ed8439

See Also

TDEA_Init TDEA_InitHex TDEA_Update TDEA_Final
[Back to Top]

TDEA_Final

Syntax

lngRet = TDEA_Final(hContext)

Parameters

Returns

Remarks

Example

See TDEA_UpdateHex.

See Also

TDEA_Init TDEA_InitHex TDEA_UpdateHex TDEA_Update
[Back to Top]

AES_Hex

Syntax

lngRet = AES_Hex(sOutput, sInput, sHexKey, lngKeyBits, lngBlockBits, bEncrypt)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sOutput As String
    Dim sInput As String
    Dim sHexKey As String
    Dim sCorrect As String

    sHexKey = "00000000000000000000000000000000"
    sInput = "80000000000000000000000000000000"
    sCorrect = "3AD78E726C1EC02B7EBFE92B23D9EC34"
    ' Set sOutput to be same length as sInput
    sOutput = String(Len(sInput), " ")

    Debug.Print "KY="; sHexKey
    Debug.Print "PT="; sInput
    ' Encrypt in one-off process
    lngRet = AES_Hex(sOutput, sInput, sHexKey, 128&, 128&, True)
    Debug.Print "CT="; sOutput; lngRet
    Debug.Print "OK="; sCorrect

    ' Now decrypt back to plain text
    sInput = sOutput
    lngRet = AES_Hex(sOutput, sInput, sHexKey, 128&, 128&, False)
    Debug.Print "P'="; sOutput; lngRet

KY=00000000000000000000000000000000
PT=80000000000000000000000000000000
CT=3AD78E726C1EC02B7EBFE92B23D9EC34 0
OK=3AD78E726C1EC02B7EBFE92B23D9EC34
P'=80000000000000000000000000000000 0

See Also

AES_HexMode
[Back to Top]

AES_HexMode

Syntax

AES_HexMode(sOutput, sInput, sHexKey,lngKeyBits, lngBlockBits, bEncrypt, sMode, sHexIV)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sOutput As String
    Dim sInput As String
    Dim sHexKey As String
    Dim sHexIV As String
    Dim sCorrect As String

    sHexKey = "0123456789ABCDEFF0E1D2C3B4A59687"
    sHexIV = "FEDCBA9876543210FEDCBA9876543210"
    ' "Now is the time for all good men"
    sInput = "4E6F77206973207468652074696D6520666F7220616C6C20676F6F64206D656E"
    sCorrect = "C3153108A8DD340C0BCB1DFE8D25D2320EE0E66BD2BB4A313FB75C5638E9E177"
    ' Set sOutput to be same length as sInput
    sOutput = String(Len(sInput), " ")

    Debug.Print "KY="; sHexKey
    Debug.Print "IV="; sHexIV
    Debug.Print "PT="; sInput
    ' Encrypt in one-off process
    lngRet = AES_HexMode(sOutput, sInput, sHexKey, 128&, 128&, True, "CBC", sHexIV)
    Debug.Print "CT="; sOutput, lngRet
    Debug.Print "OK="; sCorrect

    ' Now decrypt back to plain text
    sInput = sOutput
    lngRet = AES_HexMode(sOutput, sInput, sHexKey, 128, 128, False, "cbc", sHexIV)
    Debug.Print "P'="; sOutput, lngRet

KY=0123456789ABCDEFF0E1D2C3B4A59687
IV=FEDCBA9876543210FEDCBA9876543210
PT=4E6F77206973207468652074696D6520666F7220616C6C20676F6F64206D656E
CT=C3153108A8DD340C0BCB1DFE8D25D2320EE0E66BD2BB4A313FB75C5638E9E177    0
OK=C3153108A8DD340C0BCB1DFE8D25D2320EE0E66BD2BB4A313FB75C5638E9E177
P'=4E6F77206973207468652074696D6520666F7220616C6C20676F6F64206D656E    0

See Also

AES_Hex
[Back to Top]

AES_Bytes

Syntax

lngRet = AES_Bytes(aResult(0), aData(0), lngDataLen, aKey(0), lngKeyBits, lngBlockBits, bEncrypt)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sInput As String
    Dim sHexKey As String
    Dim sCorrect As String
    Dim lngKeyLen As Long
    Dim aKey() As Byte
    Dim aResult() As Byte
    Dim aData() As Byte
    Dim lngDataLen As Long

    ' Define test vectors in hex
    sHexKey = "00000000000000000000000000000000"
    sInput = "80000000000000000000000000000000"
    sCorrect = "3AD78E726C1EC02B7EBFE92B23D9EC34"

    ' Convert to byte arrays
    lngKeyLen = Len(sHexKey) \ 2
    ReDim aKey(lngKeyLen)
    Call bu_HexStr2Bytes(sHexKey, aKey)
    lngDataLen = Len(sInput) \ 2
    ReDim aData(lngDataLen)
    Call bu_HexStr2Bytes(sInput, aData)
    ReDim aResult(lngDataLen)

    Debug.Print "KY="; bu_Bytes2HexStr(aKey, lngKeyLen)
    Debug.Print "PT="; bu_Bytes2HexStr(aData, lngDataLen)
    ' Encrypt in one-off process
    lngRet = AES_Bytes(aResult(0), aData(0), lngDataLen, aKey(0), 128&, 128&, True)
    Debug.Print "CT="; bu_Bytes2HexStr(aResult, lngDataLen), lngRet
    Debug.Print "OK="; sCorrect

    ' Now decrypt back
    lngRet = AES_Bytes(aData(0), aResult(0), lngDataLen, aKey(0), 128&, 128&, False)
    Debug.Print "P'="; bu_Bytes2HexStr(aData, lngDataLen), lngRet

KY=00000000000000000000000000000000
PT=80000000000000000000000000000000
CT=3AD78E726C1EC02B7EBFE92B23D9EC34        0
OK=3AD78E726C1EC02B7EBFE92B23D9EC34
P'=80000000000000000000000000000000        0

See Also

AES_BytesMode
[Back to Top]

AES_BytesMode

Syntax

lngRet = AES_Bytes(aResult(0), aData(0), lngDataLen, aKey(0), lngKeyBits, lngBlockBits, bEncrypt, sMode, aInitV(0))

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sOutput As String
    Dim sInput As String
    Dim sHexKey As String
    Dim sHexIV As String
    Dim sCorrect As String
    Dim lngKeyLen As Long
    Dim aKey(15) As Byte
    Dim aInitV(15) As Byte
    Dim aResult() As Byte
    Dim aData() As Byte
    Dim lngDataLen As Long
    Dim lngIVLen As Long

    sInput = "Now is the time for all good men"
    sCorrect = "C3153108A8DD340C0BCB1DFE8D25D2320EE0E66BD2BB4A313FB75C5638E9E177"
    sHexKey = "0123456789ABCDEFF0E1D2C3B4A59687"
    sHexIV = "FEDCBA9876543210FEDCBA9876543210"

    ' Convert to byte arrays
    aData() = StrConv(sInput, vbFromUnicode)
    lngDataLen = UBound(aData) + 1
    ReDim aResult(lngDataLen)
    lngKeyLen = bu_HexStr2Bytes(sHexKey, aKey)
    lngIVLen = bu_HexStr2Bytes(sHexIV, aInitV)

    Debug.Print "KY="; bu_Bytes2HexStr(aKey, lngKeyLen)
    Debug.Print "IV="; bu_Bytes2HexStr(aInitV, lngIVLen)
    Debug.Print "PT="; bu_Bytes2HexStr(aData, lngDataLen)
    ' Encrypt in one-off process
    lngRet = AES_BytesMode(aResult(0), aData(0), lngDataLen, aKey(0), _
        128&, 128&, True, "CBC", aInitV(0))
    Debug.Print "CT="; bu_Bytes2HexStr(aResult, lngDataLen)
    Debug.Print "OK="; sCorrect

    ' Now decrypt back
    lngRet = AES_BytesMode(aData(0), aResult(0), lngDataLen, aKey(0), _
        128&, 128&, False, "cbc", aInitV(0))
    sOutput = StrConv(aData(), vbUnicode)
    Debug.Print "P'="; sOutput

KY=0123456789ABCDEFF0E1D2C3B4A59687
IV=FEDCBA9876543210FEDCBA9876543210
PT=4E6F77206973207468652074696D6520666F7220616C6C20676F6F64206D656E
CT=C3153108A8DD340C0BCB1DFE8D25D2320EE0E66BD2BB4A313FB75C5638E9E177
OK=C3153108A8DD340C0BCB1DFE8D25D2320EE0E66BD2BB4A313FB75C5638E9E177
P'=Now is the time for all good men

See Also

AES_Bytes
[Back to Top]

AES_FileHex

Syntax

lngRet = AES_FileHex(sFileOut, sFileIn, sHexKey, bEncrypt, lngKeyBits, lngBlockBits, sMode, sHexIV)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    lngRet = AES_FileHex("bigfile.cbc", "bigfile.dat", _
        "fedcba9876543210fedcba9876543210", 128&, 128&, True, _
        "CBC", "0123456789abcdef0123456789abcdef")

See Also

AES_File
[Back to Top]

AES_File

Syntax

iRet = AES_File(sFileOut, sFileIn, aKey(0), lngKeyBits, lngBlockBits, bEncrypt, sMode, aInitV(0))

Parameters

Returns

Remarks

Example

    Const MY_PATH As String = "C:\Test\"
    Dim strFileOut As String, strFileIn As String, strFileChk As String
    Dim lngRet As Long
    Dim aKey(15) As Byte

    ' Construct full path names to files
    strFileIn = MY_PATH & "now.txt"
    strFileOut = MY_PATH & "aesnow.enc"
    strFileChk = MY_PATH & "aesnow.chk"

    ' Convert key to byte array
    Call bu_HexStr2Bytes("0123456789ABCDEFF0E1D2C3B4A59687", aKey)
    ' Encrypt plaintext file to cipher
    lngRet = AES_File(strFileOut, strFileIn, aKey(0), _
        128&, 128&, True, "ECB", vbNullString)
    Debug.Print lngRet

    ' Now decrypt it
    lngRet = AES_File(strFileChk, strFileOut, aKey(0), _
        128&, 128&, False, "ECB", vbNullString)
    Debug.Print lngRet

See Also

AES_FileHex
[Back to Top]

AES_InitHex

Syntax

hContext = AES_InitHex(sHexKey, lngKeyBits, lngBlockBits, bEncrypt, sMode, sHexIV)

Parameters

Returns

Remarks

Example

See AES_UpdateHex.

See Also

AES_Init AES_UpdateHex AES_Update AES_Final
[Back to Top]

AES_Init

Syntax

hContext = AES_Init(aKey(0), lngKeyBits, lngBlockBits, bEncrypt, sMode, aInitV(0))

Parameters

Returns

Remarks

Example

See AES_Update.

See Also

AES_InitHex AES_UpdateHex AES_Update AES_Final
[Back to Top]

AES_UpdateHex

Syntax

lngRet = AES_UpdateHex(hContext, sHexString)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim hContext As Long
    Dim sBlock As String
    Dim sHexKey As String
    Dim sInitV As String
    Dim sNext As String
    Dim sLast As String
    Dim sCorrect As String
    Dim j As Integer

    sBlock = "204F17E2444381F6114FF53934C0BCD3"
    sHexKey = "8A05FC5E095AF4848A08D328D3688E3D"
    sInitV = "8A05FC5E095AF4848A08D328D3688E3D"
    sCorrect = "192D9B3AA10BB2F7846CCBA0085C657A"

    Debug.Print "AES Monte Carlo CBC Mode Encrypt:"
    Debug.Print "KY="; sHexKey
    Debug.Print "IV="; sInitV
    Debug.Print "PT="; sBlock

    hContext = AES_InitHex(sHexKey, 128, 128, True, "CBC", sInitV)
    If hContext = 0 Then
        MsgBox "Failed to set context", vbCritical
        Exit Function
    End If
    ' Do 10,000 times
    sNext = sBlock
    For j = 0 To 9999
        sBlock = sNext
        lngRet = AES_UpdateHex(hContext, sBlock)
        If j = 0 Then
            sNext = sInitV
        Else
            sNext = sLast
        End If
        sLast = sBlock
    Next
    Debug.Print "CT="; sBlock
    Debug.Print "OK="; sCorrect
    lngRet = AES_Final(hContext)

AES Monte Carlo CBC Mode Encrypt:
KY=8A05FC5E095AF4848A08D328D3688E3D
IV=8A05FC5E095AF4848A08D328D3688E3D
PT=204F17E2444381F6114FF53934C0BCD3
CT=192D9B3AA10BB2F7846CCBA0085C657A
OK=192D9B3AA10BB2F7846CCBA0085C657A

See Also

AES_Init AES_InitHex AES_Update AES_Final
[Back to Top]

AES_Update

Syntax

lngRet = AES_Update(hContext, aData(0), lngDataLen)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim sOutput As String
    Dim sInput As String
    Dim sHexKey As String
    Dim sHexIV As String
    Dim sCorrect As String
    Dim lngKeyLen As Long
    Dim aKey(15) As Byte
    Dim aData(15) As Byte
    Dim lngDataLen As Long
    Dim aInitV(15) As Byte
    Dim lngIVLen As Long
    Dim hContext As Long
    Dim i As Integer

    sHexKey = "0123456789ABCDEFF0E1D2C3B4A59687"
    sHexIV = "FEDCBA9876543210FEDCBA9876543210"
    sInput = "Now is the time for all good men"
    sCorrect = "C3153108A8DD340C0BCB1DFE8D25D2320EE0E66BD2BB4A313FB75C5638E9E177"

    ' Convert to byte arrays
    lngKeyLen = bu_HexStr2Bytes(sHexKey, aKey)
    lngIVLen = bu_HexStr2Bytes(sHexIV, aInitV)
    Debug.Print "KY="; bu_Bytes2HexStr(aKey, lngKeyLen)
    Debug.Print "IV="; bu_Bytes2HexStr(aInitV, lngIVLen)

    ' Initialise context
    hContext = AES_Init(aKey(0), 128, 128, True, "CBC", aInitV(0))
    If hContext = 0 Then
        MsgBox "Unable to create context"
        Exit Function
    End If

    ' Encrypt string in blocks of 16 bytes (128 bits)
    sOutput = ""
    lngDataLen = 16
    For i = 0 To (Len(sInput) \ lngDataLen) - 1
        ' Get next block
        Call bu_String2Bytes(Mid(sInput, i * lngDataLen + 1, lngDataLen), aData)
        Debug.Print "PT="; bu_Bytes2String(aData, lngDataLen)

        lngRet = AES_Update(hContext, aData(0), lngDataLen)

        Debug.Print "CT="; bu_Bytes2HexStr(aData, lngDataLen), lngRet
        ' Append to output string
        sOutput = sOutput & bu_Bytes2String(aData, lngDataLen)
    Next

    ' Show result
    Debug.Print "CT="; bu_Str2Hex(sOutput)
    Debug.Print "OK="; sCorrect

    lngRet = AES_Final(hContext)

    ' Now decrypt
    sInput = sOutput
    sOutput = ""
    hContext = AES_Init(aKey(0), 128, 128, False, "CBC", aInitV(0))
    For i = 0 To (Len(sInput) \ lngDataLen) - 1
        ' Get next block
        Call bu_String2Bytes(Mid(sInput, i * lngDataLen + 1, lngDataLen), aData)
        Debug.Print "CT="; bu_Bytes2HexStr(aData, lngDataLen)

        lngRet = AES_Update(hContext, aData(0), lngDataLen)

        Debug.Print "PT="; bu_Bytes2HexStr(aData, lngDataLen), lngRet
        ' Append to output string
        sOutput = sOutput & bu_Bytes2String(aData, lngDataLen)
    Next

    ' Show result
    Debug.Print "P'="; bu_Str2Hex(sOutput)
    Debug.Print "P'="; sOutput
    lngRet = AES_Final(hContext)

KY=0123456789ABCDEFF0E1D2C3B4A59687
IV=FEDCBA9876543210FEDCBA9876543210
PT=Now is the time
CT=C3153108A8DD340C0BCB1DFE8D25D232        0
PT=for all good men
CT=0EE0E66BD2BB4A313FB75C5638E9E177        0
CT=C3153108A8DD340C0BCB1DFE8D25D2320EE0E66BD2BB4A313FB75C5638E9E177
OK=C3153108A8DD340C0BCB1DFE8D25D2320EE0E66BD2BB4A313FB75C5638E9E177
CT=C3153108A8DD340C0BCB1DFE8D25D232
PT=4E6F77206973207468652074696D6520        0
CT=0EE0E66BD2BB4A313FB75C5638E9E177
PT=666F7220616C6C20676F6F64206D656E        0
P'=4E6F77206973207468652074696D6520666F7220616C6C20676F6F64206D656E
P'=Now is the time for all good men

See Also

AES_Init AES_InitHex AES_UpdateHex AES_Final
[Back to Top]

AES_Final

Syntax

lngRet = AES_Final(hContext)

Parameters

Returns

Remarks

Example

See the examples in AES_UpdateHex and AES_Update.

See Also

AES_Init AES_InitHex AES_UpdateHex AES_Update
[Back to Top]

AES_Ecb

Syntax

lngRet = AES_Ecb(hContext, aData(0), lngDataLen, bEncrypt)

Parameters

Returns

Remarks

Example

    Dim lngRet As Long
    Dim hContext As Long
    Dim aKey(15) As Byte
    Dim aData(15) As Byte
    Dim lngDataLen As Long
    Dim aInitV(15) As Byte
    Dim lngKeyLen As Long
    Dim nBlocks As Integer, i As Integer
    Dim aECBWork(15) As Byte

    ' Set up key and IV arrays
    ' ...

    hContext = AES_Init(aKey(0), 128&, 128&, True, "CBC", aInitV(0))

    For i = 0 To nBlocks - 1
        ' ...
         lngRet = AES_Update(hContext, aData(0), lngDataLen)

        ' Sneak in here and use ECB mode in both directions
        lngRet = AES_Ecb(hContext, aECBWork(0), 16&, True)
        lngRet = AES_Ecb(hContext, aECBWork(0), 16&, False)

    Next
    lngRet = AES_Final(hContext)

See Also

AES_EcbHex
[Back to Top]

AES_EcbHex

Syntax

lngRet = AES_EcbHex(hContext, sHexBlock, bEncrypt)

Parameters

Returns

Remarks

Example

See Also

AES_Ecb
[Back to Top]

SHA1_StringHexHash

Syntax

iRet = SHA1_StringHexHash(sDigest, sMessage)

Parameters

Returns

Remarks

Example

    Dim iRet As Long
    Dim sDigest As String
    ' Set sDigest to be 40 chars
    sDigest = String(40, " ")
    iRet = SHA1_StringHexHash(sDigest, "abc")
    Debug.Print sDigest

    iRet = SHA1_StringHexHash(sDigest, _
        "abcdbcdecdefdefgefghfghighijhijkijkljklmklmnlmnomnopnopq")
    Debug.Print sDigest

a9993e364706816aba3e25717850c26c9cd0d89d
84983e441c3bd26ebaae4aa1f95129e5e54670f1

See Also

SHA1_FileHexHash SHA1_BytesHexHash
[Back to Top]

SHA1_BytesHexHash

Syntax

iRet = SHA1_BytesHexHash(sDigest, aByteArray(0), lngLength)

Parameters

Returns

Remarks

Example

    Dim iRet As Long
    Dim aBytes(2) As Byte   ' Create 3-byte array (NB zero-based)
    ' Alternative way of making sure string is 40 chars long
    Dim sDigest As String * 40

    ' Setup byte array with "abc"
    aBytes(0) = Asc("a")
    aBytes(1) = Asc("b")
    aBytes(2) = Asc("c")

    iRet = SHA1_BytesHexHash(sDigest, aBytes(0), 3)
    Debug.Print iRet; sDigest

 0 a9993e364706816aba3e25717850c26c9cd0d89d

See Also

SHA1_StringHexHash SHA1_FileHexHash
[Back to Top]

SHA1_FileHexHash

Syntax

iRet = SHA1_FileHexHash(sDigest, sFilename, sMode)

Parameters

Returns

Remarks

Example

    Dim iRet As Long
    Dim sDigest As String
    Dim sFilename As String

    sFilename = "hello.txt"
    ' Set sDigest to be 40 chars
    sDigest = String(40, " ")
    ' Make sha1sum in text mode (treating CR-LF as single NL)
    iRet = SHA1_FileHexHash(sDigest, sFilename, "t")
    Debug.Print "t "; iRet; sDigest
    ' Do in binary mode (treating CR-LF as two binary bytes)
    iRet = SHA1_FileHexHash(sDigest, sFilename, "b")
    Debug.Print "b "; iRet; sDigest

t  0 22596363b3de40b06f981fb85d82312e8c0ed511
b  0 88a5b867c3d110207786e66523cd1e4a484da697

See Also

SHA1_StringHexHash SHA1_BytesHexHash
[Back to Top]

SHA1_Init

Syntax

Dim hContext As Long
hContext = SHA1_Init()

Parameters

Returns

Remarks

Example

See Also

SHA1_AddString SHA1_AddBytes SHA1_HexDigest SHA1_Reset
[Back to Top]

SHA1_AddString

Syntax

iRet = SHA1_AddString(hContext, sMessage)

Parameters

Returns

Remarks

Example

    Dim iRet As Long
    Dim sDigest As String
    Dim hContext As Long

    ' Set context handle
    hContext = SHA1_Init()

    Debug.Print "SHA1_Init() returns handle = " & Hex(hContext)
    ' Remember to check for an invalid handle
    If hContext = 0 Then
        MsgBox "Failed to set context"
        Exit Function
    End If

    ' Add strings one by one
    iRet = SHA1_AddString(hContext, "a")
    iRet = SHA1_AddString(hContext, "bc")

    ' Set sDigest to be 40 chars
    sDigest = String(40, " ")
    iRet = SHA1_HexDigest(sDigest, hContext)
    Debug.Print sDigest

SHA1_Init() returns handle = 10029CB0
a9993e364706816aba3e25717850c26c9cd0d89d

See Also

SHA1_Init SHA1_AddBytes SHA1_HexDigest SHA1_Reset
[Back to Top]

SHA1_AddBytes

Syntax

iRet = SHA1_AddBytes(hContext, aByteArray(0), lngLength)

Parameters

Returns

Remarks

Example

    Dim iRet As Long
    Dim sDigest As String
    Dim hContext As Long
    Dim aByteArray(2) As Byte

    ' Set context handle
    hContext = SHA1_Init()
    ' Remember to check for an invalid handle
    If hContext = 0 Then
        MsgBox "Failed to set context"
        Exit Function
    End If

    ' Set up a test array of bytes
    aByteArray(0) = Asc("a")
    aByteArray(1) = &H62    ' same as Asc("b")
    ' Add mixture of bytes and strings
    iRet = SHA1_AddBytes(hContext, aByteArray(0), 2&)
    iRet = SHA1_AddString(hContext, "c")

    ' Set sDigest to be 40 chars
    sDigest = String(40, " ")
    iRet = SHA1_HexDigest(sDigest, hContext)
    Debug.Print sDigest

a9993e364706816aba3e25717850c26c9cd0d89d

See Also

SHA1_Init SHA1_AddString SHA1_HexDigest SHA1_Reset
[Back to Top]

SHA1_HexDigest

Syntax

iRet = SHA1_HexDigest(sDigest, hContext)

Parameters

Returns

Remarks

Example

See Also

SHA1_Init SHA1_AddString SHA1_AddBytes SHA1_Reset
[Back to Top]

SHA1_Reset

Syntax

iRet = SHA1_Reset(hContext)

Parameters

Returns

Remarks

Example

    Dim iRet As Long
    Dim hContext As Long

    hContext = SHA1_Init()
    iRet = SHA1_Reset(hContext)

See Also

SHA1_Init SHA1_AddString SHA1_AddBytes SHA1_HexDigest
[Back to Top]

SHA1_Hmac

Syntax

iRet = SHA1_Hmac(sDigest, aByteArray(0), lngLength, aKey(0), lngKeyLen)

Parameters

Returns

Remarks

Example

    Dim iRet As Long
    Dim aBytes() As Byte
    Dim aKey() As Byte
    Dim i As Integer
    Dim lngLength As Long, lngKeyLen As Long
    Dim sDigest As String * 40

    ' Test No 1.
    ' Set key = 0x0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b
    ReDim aKey(15)
    For i = 0 To 15
        aKey(i) = &HB
    Next
    ' Convert string to byte array
    aBytes() = StrConv("Hi There", vbFromUnicode)
    lngLength = UBound(aBytes) + 1
    ' Create HMAC digest
    iRet = SHA1_Hmac(sDigest, aBytes(0), lngLength, aKey(0), 16&)
    Debug.Print 1; iRet; sDigest

    ' Test No 2.
    aKey() = StrConv("Jefe", vbFromUnicode)
    lngKeyLen = UBound(aKey) + 1
    aBytes() = StrConv("what do ya want for nothing?", vbFromUnicode)
    lngLength = UBound(aBytes) + 1
    iRet = SHA1_Hmac(sDigest, aBytes(0), lngLength, aKey(0), lngKeyLen)
    Debug.Print 2; iRet; sDigest

    ' Test No 3.
    ReDim aKey(15)
    For i = 0 To 15
        aKey(i) = &HAA
    Next
    ReDim aBytes(49)
    For i = 0 To 49
        aBytes(i) = &HDD
    Next
    iRet = SHA1_Hmac(sDigest, aBytes(0), 50&, aKey(0), 16&)
    Debug.Print 3; iRet; sDigest

 1  0 675b0b3a1b4ddf4e124872da6c2f632bfed957e9
 2  0 effcdf6ae5eb2fa2d27416d5f184df9c259a7c79
 3  0 d730594d167e35d5956fd8003d0db3d3f46dc7bb

See Also

SHA2_Hmac
[Back to Top]

SHA2_StringHexHash

Syntax

iRet = SHA2_StringHexHash(sDigest, sMessage)

Parameters

See SHA1_StringHexHash

SHA-256 functions (prefixed SHA2_) are identical in syntax and usage to their SHA-1 equivalents (prefixed SHA1_). The only difference is that the message digest must be 64 hexadecimal characters long instead of 40.

Example

    Dim iRet As Long
    Dim sDigest As String
    ' Set sDigest to be 64 chars
    sDigest = String(64, " ")
    iRet = SHA2_StringHexHash(sDigest, "abc")
    Debug.Print sDigest

    iRet = SHA2_StringHexHash(sDigest, _
        "abcdbcdecdefdefgefghfghighijhijkijkljklmklmnlmnomnopnopq")
    Debug.Print sDigest

ba7816bf8f01cfea414140de5dae2223b00361a396177a9cb410ff61f20015ad
248d6a61d20638b8e5c026930c3e6039a33ce45964ff2167f6ecedd419db06c1

See Also

SHA2_FileHexHash SHA2_BytesHexHash
[Back to Top]

SHA2_BytesHexHash

Syntax

iRet = SHA2_BytesHexHash(sDigest, aByteArray(0), lngLength)

Parameters

See SHA1_StringHexHash

SHA-256 functions (prefixed SHA2_) are identical in syntax and usage to their SHA-1 equivalents (prefixed SHA1_). The only difference is that the message digest must be 64 hexadecimal characters long instead of 40.

Example

    Dim iRet As Long
    Dim aBytes(2) As Byte   ' Create 3-byte array (NB zero-based)
    ' Alternative way of making sure string is 64 chars long
    Dim sDigest As String * 64

    ' Setup byte array with "abc"
    aBytes(0) = Asc("a")
    aBytes(1) = Asc("b")
    aBytes(2) = Asc("c")

    iRet = SHA2_BytesHexHash(sDigest, aBytes(0), 3)
    Debug.Print iRet; sDigest

 0 ba7816bf8f01cfea414140de5dae2223b00361a396177a9cb410ff61f20015ad

See Also

SHA2_StringHexHash SHA2_FileHexHash
[Back to Top]

SHA2_FileHexHash

Syntax

iRet = SHA2_FileHexHash(sDigest, sFilename, sMode)

Parameters

See SHA1_StringHexHash

SHA-256 functions (prefixed SHA2_) are identical in syntax and usage to their SHA-1 equivalents (prefixed SHA1_). The only difference is that the message digest must be 64 hexadecimal characters long instead of 40.

Example

    Dim iRet As Long
    Dim sDigest As String
    Dim sFilename As String

    sFilename = "hello.txt"
    ' Set sDigest to be 64 chars
    sDigest = String(64, " ")
    ' Make sha1sum in text mode (treating CR-LF as single NL)
    iRet = SHA2_FileHexHash(sDigest, sFilename, "t")
    Debug.Print "t "; iRet; sDigest
    ' Do in binary mode (treating CR-LF as two binary bytes)
    iRet = SHA2_FileHexHash(sDigest, sFilename, "b")
    Debug.Print "b "; iRet; sDigest

t  0 a948904f2f0f479b8f8197694b30184b0d2ed1c1cd2a1ec0fb85d299a192a447
b  0 572a95fee9c0f320030789e4883707affe12482fbb1ea04b3ea8267c87a890fb

See Also

SHA2_StringHexHash SHA2_BytesHexHash
[Back to Top]

SHA2_Init

Syntax

Dim hContext As Long
hContext = SHA2_Init()

Parameters

See SHA1_StringHexHash

SHA-256 functions (prefixed SHA2_) are identical in syntax and usage to their SHA-1 equivalents (prefixed SHA1_). The only difference is that the message digest must be 64 hexadecimal characters long instead of 40.

Example

See Also

SHA2_AddString SHA2_AddBytes SHA2_HexDigest SHA2_Reset
[Back to Top]

SHA2_AddString

Syntax

iRet = SHA2_AddString(hContext, sMessage)

Parameters

See SHA1_StringHexHash

SHA-256 functions (prefixed SHA2_) are identical in syntax and usage to their SHA-1 equivalents (prefixed SHA1_). The only difference is that the message digest must be 64 hexadecimal characters long instead of 40.

Example

    Dim iRet As Long
    Dim sDigest As String
    Dim hContext As Long
    Dim i As Long
    Dim sA1000 As String

    ' Set context handle
    hContext = SHA2_Init()
    If hContext = 0 Then
        MsgBox "Failed to set context"
        Exit Function
    End If

    ' Create a string of 1000 'a's
    sA1000 = String(1000, "a")

    ' Add 1000 times => one million repetitions of "a"
    For i = 1 To 1000
        iRet = SHA2_AddString(hContext, sA1000)
    Next

    ' Set sDigest to be 64 chars - don't forget!!
    sDigest = String(64, " ")
    iRet = SHA2_HexDigest(sDigest, hContext)
    Debug.Print sDigest

cdc76e5c9914fb9281a1c7e284d73e67f1809a48a497200e046d39ccc7112cd0

See Also

SHA2_Init SHA2_AddBytes SHA2_HexDigest SHA2_Reset
[Back to Top]

SHA2_AddBytes

Syntax

iRet = SHA2_AddBytes(hContext, aByteArray(0), lngLength)

Parameters

See SHA1_StringHexHash

SHA-256 functions (prefixed SHA2_) are identical in syntax and usage to their SHA-1 equivalents (prefixed SHA1_). The only difference is that the message digest must be 64 hexadecimal characters long instead of 40.

Example

    Dim iRet As Long
    Dim sDigest As String
    Dim hContext As Long
    Dim aByteArray(2) As Byte

    ' Set context handle
    hContext = SHA2_Init()
    ' Remember to check for an invalid handle
    If hContext = 0 Then
        MsgBox "Failed to set context"
        Exit Function
    End If

    ' Set up a test array of bytes
    aByteArray(0) = Asc("a")
    aByteArray(1) = &H62    ' same as Asc("b")
    ' Add mixture of bytes and strings
    iRet = SHA2_AddBytes(hContext, aByteArray(0), 2&)
    iRet = SHA2_AddString(hContext, "c")

    ' Set sDigest to be 64 chars
    sDigest = String(64, " ")
    iRet = SHA2_HexDigest(sDigest, hContext)
    Debug.Print sDigest

ba7816bf8f01cfea414140de5dae2223b00361a396177a9cb410ff61f20015ad

See Also

SHA2_Init SHA2_AddString SHA2_HexDigest SHA2_Reset
[Back to Top]

SHA2_HexDigest

Syntax

iRet = SHA2_HexDigest(sDigest, hContext)

Parameters

See SHA1_StringHexHash

SHA-256 functions (prefixed SHA2_) are identical in syntax and usage to their SHA-1 equivalents (prefixed SHA1_). The only difference is that the message digest must be 64 hexadecimal characters long instead of 40.

Example

See Also

SHA2_Init SHA2_AddString SHA2_AddBytes SHA2_Reset
[Back to Top]

SHA2_Reset

Syntax

iRet = SHA2_Reset(hContext)

Parameters

See SHA1_StringHexHash

SHA-256 functions (prefixed SHA2_) are identical in syntax and usage to their SHA-1 equivalents (prefixed SHA1_). The only difference is that the message digest must be 64 hexadecimal characters long instead of 40.

Example

    Dim iRet As Long
    Dim hContext As Long

    hContext = SHA2_Init()
    iRet = SHA2_Reset(hContext)

See Also

SHA2_Init SHA2_AddString SHA2_AddBytes SHA2_HexDigest
[Back to Top]

SHA2_Hmac

Syntax

iRet = SHA2_Hmac(sDigest, aByteArray(0), lngLength, aKey(0), lngKeyLen)

Parameters

See SHA1_StringHexHash

SHA-256 functions (prefixed SHA2_) are identical in syntax and usage to their SHA-1 equivalents (prefixed SHA1_). The only difference is that the message digest must be 64 hexadecimal characters long instead of 40.

Example

    Dim iRet As Long
    Dim aBytes() As Byte
    Dim aKey() As Byte
    Dim i As Integer
    Dim lngLength As Long, lngKeyLen As Long
    Dim sDigest As String * 64

    ' Test No 1.
    ' Set key = 0x0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b
    ReDim aKey(15)
    For i = 0 To 15
        aKey(i) = &HB
    Next
    ' Convert string to byte array
    aBytes() = StrConv("Hi There", vbFromUnicode)
    lngLength = UBound(aBytes) + 1
    ' Create HMAC digest
    iRet = SHA2_Hmac(sDigest, aBytes(0), lngLength, aKey(0), 16&)
    Debug.Print 1; iRet; sDigest

    ' Test No 2.
    aKey() = StrConv("Jefe", vbFromUnicode)
    lngKeyLen = UBound(aKey) + 1
    aBytes() = StrConv("what do ya want for nothing?", vbFromUnicode)
    lngLength = UBound(aBytes) + 1
    iRet = SHA2_Hmac(sDigest, aBytes(0), lngLength, aKey(0), lngKeyLen)
    Debug.Print 2; iRet; sDigest

    ' Test No 3.
    ReDim aKey(15)
    For i = 0 To 15
        aKey(i) = &HAA
    Next
    ReDim aBytes(49)
    For i = 0 To 49
        aBytes(i) = &HDD
    Next
    iRet = SHA2_Hmac(sDigest, aBytes(0), 50&, aKey(0), 16&)
    Debug.Print 3; iRet; sDigest

 1  0 492ce020fe2534a5789dc3848806c78f4f6711397f08e7e7a12ca5a4483c8aa6
 2  0 5bdcc146bf60754e6a042426089575c75a003f089d2739839dec58b964ec3843
 3  0 7dda3cc169743a6484649f94f0eda0f9f2ff496a9733fb796ed5adb40a44c3c1

See Also

SHA1_Hmac
[Back to Top]

RAN_KeyGenerate

Syntax

lngRet = RAN_KeyGenerate(abytKey(0), lngKeyLen, bPromptUser)

Parameters

Returns

Remarks

Example

    Dim abytKey(40) As Byte
    Dim sHexKey As String
    Dim lngRet As Long
    Dim nKeyLen As Long

    ' Calculate key length
    nKeyLen = UBound(abytKey) - LBound(abytKey) + 1
    ' Generate key with user prompt
    lngRet = RAN_KeyGenerate(abytKey(0), nKeyLen, True)
    ' Convert byte array to hex string and show it
    sHexKey = bu_Str2Hex(bu_Bytes2String(abytKey, nKeyLen))
    MsgBox sHexKey, Title:="Generated key"

See Also

RAN_KeyGenHex RAN_DESKeyGenerate RAN_TDEAKeyGenerate
[Back to Top]

RAN_KeyGenHex

Syntax

lngRet = RAN_KeyGenHex(sHexKey, lngKeyBytes, bPromptUser)

Parameters

Returns

Remarks

Example

    Dim sHexKey As String
    Dim lngRet As Long
    Dim nKeyBytes As Long

    ' Set length of hex string to DOUBLE # bytes required
    nKeyBytes = 16
    sHexKey = String(nKeyBytes * 2, " ")
    ' Generate key silently
    lngRet = RAN_KeyGenHex(sHexKey, nKeyBytes, False)
    MsgBox sHexKey, Title:="Generated key"

See Also

RAN_KeyGenerate
[Back to Top]

RAN_DESKeyGenerate

Syntax

    Dim abytKey(7) As Byte
    lngRet = RAN_DESKeyGenerate(abytKey(0), bPromptUser)

Parameters

Returns

Remarks

Example

    Dim abytKey(7) As Byte
    Dim sHexKey As String
    Dim lngRet As Long
    lngRet = RAN_DESKeyGenerate(abytKey(0), True)
    sHexKey = bu_Str2Hex(bu_Bytes2String(abytKey, 8))
    MsgBox sHexKey, Title:="Generated DES key"

See Also

RAN_KeyGenerate RAN_TDEAKeyGenerate
[Back to Top]

RAN_DESKeyGenHex

Syntax

    lngRet = RAN_DESKeyGenHex(sHexKey, bPromptUser)

Parameters

Returns

Remarks

Example

    Dim sHexKey As String
    Dim lngRet As Long
    ' Set length of hex string to DOUBLE # bytes required
    sHexKey = String(16, " ")
    ' Generate key silently
    lngRet = RAN_DESKeyGenHex(sHexKey, False)
    Debug.Print sHexKey

See Also

RAN_KeyGenerate RAN_DESKeyGenerate
[Back to Top]

RAN_TDEAKeyGenerate

Syntax

    Dim abytKey(23) As Byte
    lngRet = RAN_TDEAKeyGenerate(abytKey(0), bPromptUser)

Parameters

Returns

Remarks

Example

    Dim abytKey(23) As Byte
    Dim sHexKey As String
    Dim lngRet As Long
    lngRet = RAN_TDEAKeyGenerate(abytKey(0), False)
    sHexKey = bu_Str2Hex(bu_Bytes2String(abytKey, 24))
    MsgBox sHexKey, Title:="Generated TDEA key"

See Also

RAN_KeyGenerate RAN_DESKeyGenerate
[Back to Top]

RAN_TDEAKeyGenHex

Syntax

    lngRet = RAN_TDEAKeyGenHex(sHexKey, bPromptUser)

Parameters

Returns

Remarks

Example

    Dim sHexKey As String
    Dim lngRet As Long
    ' Set length of hex string to DOUBLE # bytes required
    sHexKey = String(48, " ")
    ' Generate key with prompt
    lngRet = RAN_TDEAKeyGenHex(sHexKey, True)
    Debug.Print sHexKey

See Also

RAN_KeyGenerate RAN_DESKeyGenerate
[Back to Top]

RAN_Seed

Syntax

lngRet = RAN_Seed(abytSeed(0), lngSeedLen, bPromptUser)

Parameters

Returns

Remarks

Example

    lngRet = RAN_Seed(vbNullString, 0, True)

    Dim lngRet As Long
    Dim abytSeed(2) As Byte
    abytSeed(0) = &61
    abytSeed(1) = &62
    abytSeed(2) = &63
    lngRet = RAN_Seed(abytSeed(0), 3&, False)

See Also

RAN_KeyGenerate
[Back to Top]

RAN_Test

Syntax

lngRet = RAN_Test(sFilename)

Parameters

Returns

Remarks

Example

    lngRet = RAN_Test("Fips140t.txt")

FIPS140-2 test for 20000 bits (2500 bytes)
at Fri Aug 03 05:10:16 2001

1. Monobits test n1 = 10052 (9725 - 10275)
   Passed Monobits test.
2. Poker test X = 5.09 (2.16 - 46.17)
   Passed Poker test.
3. Runs test:
     Run len:   1    2    3    4    5    6+
     Gaps:   2516, 1281, 612, 286, 147, 167
     Blocks: 2500, 1231, 646, 329, 145, 158
     Min:   (2343, 1135, 542, 251, 111, 111)
     Avg:   (2500, 1250, 625, 312, 156, 156)
     Max:   (2657, 1365, 708, 373, 201, 201)
     Pass:      Y    Y    Y    Y    Y    Y
   Passed Runs test.
4. Long runs test: Gmax = 14 Bmax = 13 (26)
   Passed Long Run test.
Passed FIPS140-2 test.
Test sample was:-
5E2B9DDC9EE2DEB8F13A8339E571C37...

See Also

[Back to Top]

RAN_Nonce

Syntax

lngRet = RAN_Nonce(abytNonce(0), lngNonceLen)

Parameters

Returns

Remarks

Example

    Dim abytNonce(10) As Byte
    Dim sHex As String
    Dim lngRet As Long
    Dim lngNonceLen As Long

    lngNonceLen = UBound(abytNonce) - LBound(abytNonce) + 1
    lngRet = RAN_Nonce(abytNonce(0), lngNonceLen)
    ' Convert to hex string
    sHex = bu_Str2Hex(bu_Bytes2String(abytNonce, lngNonceLen))
    MsgBox sHex, Title:="Generated nonce"

See Also

RAN_NonceHex RAN_Long RAN_KeyGenerate
[Back to Top]

RAN_NonceHex

Syntax

lngRet = RAN_NonceHex(sHexData, lngNonceLen)

Parameters

Returns

Remarks

Example

    Dim sHexData As String
    Dim lngRet As Long

    ' Set hex string length to 2 x # bytes required.
    sHexData = String(40, " ")
    lngRet = RAN_NonceHex(sHexData, 20&)
    Debug.Print sHexData

See Also

RAN_Nonce RAN_Long RAN_KeyGenerate
[Back to Top]

RAN_Long

Syntax

lngRandom = RAN_Long(lngLower, lngUpper)

Parameters

Returns

Remarks

Example

    Dim i As Integer
    For i = 1 To 10
        Debug.Print RAN_Long(-1000000, 1000000)
    Next

    Dim i As Integer
    For i = 1 To 8
        Debug.Print RAN_Long(0, 1);
    Next
    Debug.Print

See Also

RAN_Nonce
[Back to Top]

Declaration Statements

A full set of the required declaration statements are provided in the module basCryptoSys.

[Back to Top]

Error Codes

0 = OK, no error
1 = Cannot open input file
2 = Cannot create output file
3 = File read error
4 = File write error
8 = Input not multiple of 8 bytes long
33 = Invalid key length
34 = Invalid block length
35 = Invalid mode
39 = Unexpected Null string found
48 = Invalid key
49 = Invalid block
50 = Invalid hexadecimal character
51 = Invalid initialisation vector
64 = Invalid context handle
1024 = Not enough memory
1281 = Random number memory error
1282 = Random number generator power-up test failure
1283 = Continuous random number generator test failure
1284 = Random number setup error

[Back to Top]

Acknowledgements

The source code used in CryptoSys is original code written by David Ireland except for the following:

• The DES algorithm includes code by Richard Outerbridge placed in the public domain August 1992.
• The Blowfish algorithm includes code published by Bruce Schneier in Applied Cryptography 1996 [SCHN].
• The Rijndael AES algorithm includes code placed in the public domain by Paulo Barreto, Vincent Rijmen and K.U.Leuven in August 1999 [RIJN].
• The SHA-1 algorithm includes code derived from 100% public domain code by Steve Reid <steve@edmweb.com> with modifications based on work by Peter Gutmann as posted to sci.crypt in message <30ajo5$oe8@ccu2.auckland.ac.nz>.
• The HMAC algorithm includes code from RFC 2104 HMAC: Keyed-Hashing for Message Authentication [HMAC].
• The secure random number generator is based on the principles in the two versions of the paper Software Generation of Practically Strong Random Numbers by Peter Gutmann [GUTM].

[Back to Top]

Revision History

Version 1. First published September 2001 by DI Management Systems Pty Limited.

Copyright © 2001 D.I. Management Services Pty Limited ABN 78 083 210 584, Sydney, Australia. All rights reserved.
<www.di-mgt.com.au>