Class: Miscreant::AES::SIV

Inherits:

Object

• Object
• Miscreant::AES::SIV

Defined in:

lib/miscreant/aes/siv.rb

Overview

The SIV misuse resistant authenticated encryption mode

This class is intended for power users. If you’re uncertain if you should be using it, you probably want the ‘Miscreant::AEAD` API.

Class Method Summary

• .generate_key(size = 32) ⇒ String

  Generate a new random AES-SIV key of the given size.

Instance Method Summary

• #initialize(key, mac_class = :CMAC) ⇒ SIV constructor

  Create a new AES-SIV instance.

• #inspect ⇒ String

  Inspect this AES-SIV instance.

• #open(ciphertext, associated_data = []) ⇒ String

  Verify and decrypt an AES-SIV ciphertext, authenticating it along with the associated data.

• #seal(plaintext, associated_data = []) ⇒ String

  Encrypt a message using AES-SIV, authenticating it along with the associated data.

Constructor Details

#initialize(key, mac_class = :CMAC) ⇒ SIV

Create a new AES-SIV instance

Parameters:

• key (String) —

  32-byte or 64-byte Encoding::BINARY cryptographic key

• mac (:CMAC, :PMAC) —

  (optional) MAC function to use (default CMAC)

# File 'lib/miscreant/aes/siv.rb', line 26

def initialize(key, mac_class = :CMAC)
  Internals::Util.validate_bytestring("key", key, length: [32, 64])
  length = key.length / 2

  case mac_class
  when :CMAC
    @mac = CMAC.new(key[0, length])
  when :PMAC
    @mac = PMAC.new(key[0, length])
  else raise ArgumentError, "bad MAC class: #{mac_class} (expected :CMAC or :PMAC)"
  end

  @ctr = Internals::AES::CTR.new(key[length..-1])
end

Class Method Details

.generate_key(size = 32) ⇒ String

Generate a new random AES-SIV key of the given size

Parameters:

• size (Integer) (defaults to: 32) —

  size of key in bytes (32 or 64)

Returns:

• (String) —

  newly generated AES-SIV key

Raises:

• (ArgumentError)

# File 'lib/miscreant/aes/siv.rb', line 17

def self.generate_key(size = 32)
  raise ArgumentError, "key size must be 32 or 64 bytes" unless [32, 64].include?(size)
  SecureRandom.random_bytes(size)
end

Instance Method Details

#inspect ⇒ String

Inspect this AES-SIV instance

Returns:

• (String) —

  description of this instance

# File 'lib/miscreant/aes/siv.rb', line 44

def inspect
  to_s
end

#open(ciphertext, associated_data = []) ⇒ String

Verify and decrypt an AES-SIV ciphertext, authenticating it along with the associated data

Parameters:

• ciphertext (String) —

  an Encoding::BINARY string to decrypt

• associated_data (Array<String>) (defaults to: []) —

  optional array of message headers to authenticate

Returns:

• (String) —

  decrypted plaintext

Raises:

• (Miscreant::IntegrityError) —

  ciphertext and/or associated data are corrupt or tampered with

# File 'lib/miscreant/aes/siv.rb', line 68

def open(ciphertext, associated_data = [])
  raise TypeError, "expected String, got #{ciphertext.class}" unless ciphertext.is_a?(String)
  v = ciphertext[0, Internals::Block::SIZE]
  plaintext = @ctr.encrypt(_zero_iv_bits(v), ciphertext[Internals::Block::SIZE..-1])
  t = _s2v(associated_data, plaintext)
  raise IntegrityError, "ciphertext verification failure!" unless Internals::Util.ct_equal(t, v)

  plaintext
end

#seal(plaintext, associated_data = []) ⇒ String

Encrypt a message using AES-SIV, authenticating it along with the associated data

Parameters:

• plaintext (String) —

  an Encoding::BINARY string to encrypt

• associated_data (Array<String>) (defaults to: []) —

  optional array of message headers to authenticate

Returns:

• (String) —

  encrypted ciphertext

Raises:

• (TypeError)

# File 'lib/miscreant/aes/siv.rb', line 54

def seal(plaintext, associated_data = [])
  raise TypeError, "expected String, got #{plaintext.class}" unless plaintext.is_a?(String)
  v = _s2v(associated_data, plaintext)
  ciphertext = @ctr.encrypt(_zero_iv_bits(v), plaintext)
  v + ciphertext
end