Cyclic0007/micro-AES
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
45f9d06c8a3c694793eeca8321c92373bf9167b8
micro-AES/README.md
polfosol 45f9d06c8a bug fixes and improvements
2022-10-30 20:12:48 +03:30

6.0 KiB
Raw Blame History

µAES

A minimalist ANSI-C compatible code for most of the AES-related algorithms.

GitHub release C Build Status License

This library is a highly flexible, all-in-one implementation of different AES encryption schemes and block ciphers modes. Before you continue, please keep in mind that, most security experts strongly warn against implementing your own version of AES—or other ciphering algorithms; AND THEY ARE ABSOLUTELY RIGHT!

Everyone who is becoming familiar with cryptography, should first sign Jeff Moser's so-called "Foot Shooting Prevention Agreement". I have put a copy of it at the bottom of this page.

With that in mind, I shall say that the main purpose of developing µAES was purely educational. I learned a lot during writing these codes and I hope that somebody, some day, would gain a bit of knowledge from it.

Features

  • \textrm{\textbf{Comprehensive}} — supports any form of the AES with all possible combinations of standard key sizes and block-cipher modes. e.g. AES-128-CBC or AES-192-GCM or AES-256-XTS are within reach simply by setting a couple of macros.

  • \textrm{\textbf{All in one}} — all popular (and some unpopular) block ciphering modes of the AES are implemented into a single file; such as ECB, CBC, CFB, OFB, CTR, GCM, CCM, XTS, OCB, EAX, KW (KWA), SIV, GCM-SIV, FPE, and furthermore, authentication APIs for CMAC and Poly1305-AES.

  • \textrm{\textbf{Clear and readable code}} — hopefully, the code is written in a layman-friendly way. Lots of comments are added along the way to make its purpose more understandable. Also the code styling is a bit different, and IMHO more eye-catching, than what you might see in other implementations.

  • \textrm{\textbf{Flexible}} — many features of µAES are controllable by macros, so that you can just pick up what you need and disable the unnecessary parts. These macros are defined in the header file micro_aes.h and comments are added for each of them to explain what they represent. Please read those comments carefully before using the code.

  • \textrm{\textbf{Lightweight}} — the API has very little memory footprint and compiled code size. In my own tests and benchmarks, the amount of RAM used by the functions didn't exceed a few hundred bytes in most extreme cases. I might update this repo later with some of those benchmarks, and you are also cheerfully welcome to run yours.

    Moreover, the ROM space of µAES is optimized as much as possible. For example, if you disable all other macros and just stick with the GCM, the compiled code size will be around 3KB with gcc -Os on x86 machine for either AES-128-GCM or AES-256-GCM.

  • \textrm{\textbf{Fast}} — the encryption or decryption speed is fairly high, especially when there is no authentication. Some authentication functions may not look so efficient speed-wise, as they require large integer multiplications. But it's worth noting that faster methods are hardly portable or easy to understand. Furthermore, since code simplicity and portability was a main concern, paralellization or advanced CPU optimizations are not a feature of µAES —which will affect its overall speed.

    As a side note, speed is not always a blessing in cryptography and sometimes slower codes turn out to be more secure. One must be wary of those speedups that make the code more susceptible to timing attacks.

  • \textrm{\textbf{Portable}} — µAES is all-in-one with no dependencies on any other library. It is fully compliant with the ANSI-C or C89 standard which, combined with its small size, makes it a competent candidate for embedded systems and mini applications.

    You can even compile it with Tiny C Compiler:

    tcc -c main.c      -o main.o
tcc -c micro_aes.c -o micro_aes.o
tcc -o micro_aes.exe  main.o micro_aes.o

Remarks

For the sake of simplicity, it is often assumed that the input parameters of the functions are well defined, and the user knows what they're doing. As a result, a bunch of error checks are just skipped. Obviously, this is a naive and sometimes dangerous assumption. One must be aware that in a serious application, anything can be fed into the functions and they must take all the necessary precautions for erroneous parameters.

Part of µAES is palpably influenced by kokke's tiny-AES library, but I have made some modifications to make it smaller and more efficient. I shall give kudos to their great effort which paved the way for many other branches.

All the contents of this repository (except the ones that I didn't write!) are subject to the terms of Apache 2.0 license.

Copyright © 2022 - polfosol

In sorrowful memory of Mahsa Amini 🖤

The foot-shooting prevention agreement taken from Jeff Moser's blog

Reference in New Issue View Git Blame Copy Permalink