Python相当于PHP Mcrypt

时间:2013-04-26 11:54:43

标签: php python encryption mcrypt des

我在PHP中编写了以下DES加密方案。它使用静态初始化向量来确保输出和输入是一对一映射的

PHP代码:

function encrypt($plaintext, $key)
{
    # use an explicit encoding for the plain text
    $plaintext_utf8 = utf8_encode($plaintext);

    # create a random IV to use with CBC encoding
    # $iv_size = mcrypt_get_iv_size(MCRYPT_DES, MCRYPT_MODE_CBC);
    # $iv = mcrypt_create_iv($iv_size, MCRYPT_RAND);
    # defining a constant IV to use with CBC encoding
    $iv = "kritanj ";

    # creates the DES cipher text 
    $ciphertext = mcrypt_encrypt(MCRYPT_DES, $key, $plaintext_utf8, MCRYPT_MODE_CBC, $iv);
    # prepend the IV for it to be available for decryption
    $ciphertext = $iv . $ciphertext;   

    # encode the resulting cipher text so it can be represented by a string
    $ciphertext_base64 = base64_encode($ciphertext); 

    return $ciphertext_base64;
}

function decrypt($ciphertext_base64, $key)
{   
    $ciphertext_dec = base64_decode($ciphertext_base64);

    # retrieves the IV, iv_size should be created using mcrypt_get_iv_size()
    # $iv_size = mcrypt_get_iv_size(MCRYPT_DES, MCRYPT_MODE_CBC);
    # $iv = substr($ciphertext_dec, 0, $iv_size);
    $iv = "kritanj ";

    # retrieves the cipher text (everything except the $iv_size in the front)
    $ciphertext_dec = substr($ciphertext_dec, $iv_size);

    # decrypting the DES cipher text 
    $plaintext_utf8_dec = mcrypt_decrypt(MCRYPT_DES, $key, $ciphertext_dec, MCRYPT_MODE_CBC, $iv);
    return $plaintext_utf8_dec;
}

$plaintext = "The secret message is : " ;
$key = "7chrkey" ;
$ciphertext = encrypt($plaintext, $key);
echo "Encrypted: ".$ciphertext ."<br>";
$plaintext1 = decrypt($ciphertext, $key);
echo "Decrypted: ".$plaintext1  ;

输出:

Encrypted: a3JpdGFuaiB3DY63WHnE9led43FyFe53HlhUEr+vVJg=
Decrypted: The secret message is :

现在我尝试在python中编写一个等效的代码 这是我管理的

Python代码:

import binascii
def conv_sevnCharKey_to_64bit_DESkey(key):
  st = bin(int(binascii.hexlify(key), 16))
  st = st[2:]
  des_key = ''
  for i in xrange(8) :
    parity = 0
    sevnBits = st[i*7:i*7+7]
    for c in sevnBits :
      if c in '1' :
        parity += 1
    if parity % 2 == 0 :
      eigthBytes = sevnBits + '1'
    else :
      eigthBytes = sevnBits + '0'
  des_key += eigthBytes

  n = int('0b'+des_key, 2)
  DESkey =  binascii.unhexlify('%x' % n)

  return DESkey

from pyDes import *
plaintext = "The secret message is : "
iv = 'kritanj '
key = conv_sevnCharKey_to_64bit_DESkey('7chrkey')

plaintext_utf8 = plaintext.encode('utf-8')
# iniltalizing DES in cbc mode     
k = des(key, CBC, iv)
# encrypting
ciphertext = k.encrypt(plaintext_utf8)
# prepending the IV
ciphertext = iv + ciphertext;
# encoding to base64 
ciphertext_base64 = ciphertext.encode('base64','strict')

print "Encrypted: ", ciphertext_base64

# decoding base64 
ciphertext= ciphertext_base64.decode('base64','strict')
# striping the IV and decrypting
plaintext_utf8 = k.decrypt(ciphertext[8:])
# decoding utf-8 (if nessacary)
plaintext1 = plaint`ext_utf8.decode('utf-8') 

print "Decrypted: ", plaintext1

assert plaintext1== plaintext

输出:

Encrypted:  a3JpdGFuaiD+sGHb2GfZSXDac1r6mH+JDx7535yxL9k=

Decrypted:  The secret message is : 

为什么密文不同?有没有办法确保它们是相同的?

[我想使用上面的php代码对在双DES加密下加密的文本进行“中间相遇”攻击。 但由于我无法重新创建加密,我无法实施攻击]

1 个答案:

答案 0 :(得分:2)

看起来填充密钥的方案与PHP代码不同:

from pyDes import *
plaintext = "The secret message is : "
iv = 'kritanj '
key = '7chrkey'
plaintext = plaintext.encode("utf-8")
iv = 'kritanj '
k = des(key+'\0', CBC, iv)
print (iv + k.encrypt(plaintext)).encode("base64", "strict")

输出:

'a3JpdGFuaiB3DY63WHnE9led43FyFe53HlhUEr+vVJg=\n'

简而言之:使用NULL字节填充加密密钥将产生与PHP代码相同的结果。