c# - Q about AES (CBC) and IV (Is it possible to continue with aes(CBC) encryption? ,... ) -

-

i'm relatively new c# , encryption, please bear me. i'm writing data file , wanted encrypt using aes (cbc), i'll new data each day , wanted write data 1 file per week, month, year, depends on content. "server" restarted / shut down (it's not going real server) , wanted know if possible somehow (and save file) latest initialization vector after restart continue encrypting data , writing same file. when decrypt file somewhere iv of file , decrypt 1 iv?

pseudocode:

encryption:

1.) encrypting data according iv , key

2.) after data flow stops "special iv" saved 1 other file

3.) data flow stops, time passes, "server" shut down or restarted

4.) read "special iv" file , continue encryption 3. , 4. loop week, month, year

decryption:

1.) read (somehow obtain) iv , key file

2.) decrypt file iv , key

decryption should not notice encryption ever stopped , application exited, ... i've got no idea how realize this, how "special iv". think should possible realize.

what think, there reasonable way obtain special iv? ideas on how it?

thank lot time , answers.

edit: i'm using .net (4.0) implementation of aes , prefer use if possible

to decrypt block in cbc mode, need previous encrypted block: plaintext "aes-decryption of current block xor previous cipher block". encrypt, write multiples of block size file, how cbc works. when start encryption, when start filling file, have pick iv (random, different every file create, make depend on time or such thing), write file first "cipher text block", , every block of actual data, xor previous block file (which in beginning iv), , encrypt block cipher. when new data later, use last block have.

subtle point: write multiples of blocks, you'll need padding. make know how many bytes padding , how many bytes "real data". when start next batch of data, should somehow mark previous block ended "data unit", know that, when decrypting, know blocks need remove padding of actual data. you'll need wrapper around it, or internal structure of data (format) make unambiguous. it's watch out for.


Comments

Post a Comment

Popular posts from this blog

linux - Mailx and Gmail nss config dir -

-
i trying send mail linux command line using mailx command. can send local domain no problem want set mail send gmail account receive mail sent gmail account. after configuring mail.rc so: account gmail { set smtp=smtps://smtp.gmail.com:587 set smtp-auth=login set smtp-auth-user=username@gmail.com set smtp-auth-password=password set ssl-verify=ignore } i error: resolving host smtp.gmail.com . . . done. connecting 74.125.25.109 . . . connected. missing "nss-config-dir" variable. "/home/username/dead.letter" 11/354 . . . message not sent. after looking "nss-config-dir" here , located certn.db , keyn.db files , added mail.rc so: account gmail { set smtp=smtps://smtp.gmail.com:587 set smtp-auth=login set smtp-auth-user=username@gmail.com set smtp-auth-password=password set ssl-verify=ignore set nss-config-dir=/home/user/.mozilla/firefox/location.default } now when try send mail using command: echo "sent gmail account" | mailx -v -a
Read more

c# - Is it possible to remove an existing registration from Autofac container builder? -

-
something along lines: builder.registertype<mytype>().as<itype>(); builder.registertype<mytype2>().as<itype>(); builder.deregistertype<mytype>().as<itype>() var container = builder.build(); var types = container.resolve<ienumerable<itype>>(); assert.istrue(types.count == 1); assert.istrue(types[0].gettype == typeof(mytype2)); scenario: go through bunch of assemblies , go register types want make sure have 1 implementation of given type. need before create container. track on own nice if autofac me bit. this cannot done directly using containerbuilder , unless start on new one. mind you, having first built container should able construct new container filtering away unwanted types , reusing registrations first container. this: ... var container = builder.build(); builder = new containerbuilder(); var components = container.componentregistry.registrations .where(cr => cr.activator.limittype != typ
Read more

php - Mysql PK and FK char(36) vs int(10) -

-
i have read mysql can handle indexes , searches better if tables keys integers rather char(36) uuid's. is worth converting int(10)? note: use 1 server , have have plans use multiple databases concurrently therefore removing 1 of big reasons using uuid. our tables innodb if makes difference. thanks in advance. usually rdbms can handle integer keys pk more efficient, other datatypes. reason how build index column, yes: long dont require string (or other typed) keys, should use integers. however: char(36) , int(10) far away being equal, because int(10) much smaller, char(36). dont know, if require many different keys, should keep in mind. update, complete last paragraph: int(10) 32-bit, char(36) 36 - ^byte^ (= 288-bit). not mean, int consumes less space, means, char(36) has 4 times more different keys.
Read more