DragonFly On-Line Manual Pages

Search: Section:  


AESCRYPT(1)            DragonFly General Commands Manual           AESCRYPT(1)

NAME

aescrypt - encrypt data using Rijndael, the Advanced Encryption Standard winner

SYNOPSIS

aescrypt -k keyfile [-s keysize]

DESCRIPTION

The aescrypt utility encrypts data using the Rijndael algorithm, the winner of the Advanced Encryption Standard (AES) competition. The encryption is done in Cipher Block Feedback (CFB-128) mode, with the salt randomly generated from data read from the /dev/urandom device. The plaintext data is read from standard input and the encrypted data is written to standard output. The encryption key may be read from standard input or from a file, depending on the argument passed to the -k command-line option. If "-" is used as a filename, the aescrypt utility reads as many hexadecimal digits as needed from standard input and then one additional byte to allow for a newline separating the key from the actual data to be encrypted. If the filename is not "-", the aescrypt utility opens the specified file and reads text lines from it until a line starting with the characters kk= is reached. Those characters should be immediately followed by as many hexadecimal digits as needed; the rest of the line, as well as the rest of the file, is ignored. The encryption key may be 128, 192, or 256 bits long. By default, the aescrypt utility uses (and expects to read) a 128-bit key, unless a different size is supplied by the -s keysize command-line option. The aescrypt utility reads 16 bytes (128 bits) from the /dev/urandom device to initialize the salt for the CFB-128 encryption. The salt is prepended to the encrypted data in the output.

EXAMPLES

Generate a random 128-bit value and store it into a keyfile suitable for the aescrypt utility: perl -e 'open(F, "<", "/dev/random") or die("$!\n"); read(F, $s, 32); print "kk=".unpack("H*", $s)."\n"' Encrypt the contents of the /etc/hosts file with the generated (128-bit by default) key: aescrypt -k key.txt < /etc/hosts > hosts.aes Encrypt a string with a 192-bit key supplied directly: (echo '012345678901234567890123456789012345678901234567'; echo 'This is a test.') | ./aescrypt -s 192 -k - > test.aes

SEE ALSO

aesget(1) The SourceForge project page: http://sourceforge.net/projects/aescrypt/

HISTORY

The aescrypt utility was written by Eric Lee Green, and was modified to use Rijndael rather than Twofish by Randy Kaelber. It uses the freely available Rijndael implementation by Antoon Bosselaers and Vincent Rijmen. This manual page was written by Peter Pentchev in 2008.

AUTHORS

The aescrypt utility - Eric Lee Green <eric@badtux.org>, Randy Kaelber <randyk@sourceforge.net>. The manual page - Peter Pentchev <roam@ringlet.net>. DragonFly 6.5-DEVELOPMENT June 8, 2008 DragonFly 6.5-DEVELOPMENT

Search: Section: