| Portability | good | 
|---|---|
| Stability | stable | 
| Maintainer | Vincent Hanquez <vincent@snarc.org> | 
| Safe Haskell | None | 
Crypto.Cipher.AES
Contents
Description
- data AES
- data AES128
- data AES192
- data AES256
- data AESGCM
- initAES :: Byteable b => b -> AES
- initKey :: Byteable b => b -> AES
- genCTR :: Byteable iv => AES -> iv -> Int -> ByteString
- encryptECB :: AES -> ByteString -> ByteString
- encryptCBC :: Byteable iv => AES -> iv -> ByteString -> ByteString
- encryptCTR :: Byteable iv => AES -> iv -> ByteString -> ByteString
- encryptXTS :: Byteable iv => (AES, AES) -> iv -> Word32 -> ByteString -> ByteString
- encryptGCM :: Byteable iv => AES -> iv -> ByteString -> ByteString -> (ByteString, AuthTag)
- decryptECB :: AES -> ByteString -> ByteString
- decryptCBC :: Byteable iv => AES -> iv -> ByteString -> ByteString
- decryptCTR :: Byteable iv => AES -> iv -> ByteString -> ByteString
- decryptXTS :: Byteable iv => (AES, AES) -> iv -> Word32 -> ByteString -> ByteString
- decryptGCM :: Byteable iv => AES -> iv -> ByteString -> ByteString -> (ByteString, AuthTag)
block cipher data types
AES Context (pre-processed key)
Instances
AES with 128 bit key
Instances
AES with 192 bit key
Instances
AES with 256 bit key
Instances
Authenticated encryption block cipher types
AESGCM State
creation
initAES :: Byteable b => b -> AESSource
Initialize a new context with a key
Key need to be of length 16, 24 or 32 bytes. any other values will cause undefined behavior
misc
Arguments
| :: Byteable iv | |
| => AES | Cipher Key. | 
| -> iv | usually a 128 bit integer. | 
| -> Int | length of bytes required. | 
| -> ByteString | 
generate a counter mode pad. this is generally xor-ed to an input to make the standard counter mode block operations.
if the length requested is not a multiple of the block cipher size, more data will be returned, so that the returned bytestring is a multiple of the block cipher size.
encryption
encryptECB :: AES -> ByteString -> ByteStringSource
encrypt using Electronic Code Book (ECB)
Arguments
| :: Byteable iv | |
| => AES | AES Context | 
| -> iv | Initial vector | 
| -> ByteString | plaintext | 
| -> ByteString | ciphertext | 
encrypt using Cipher Block Chaining (CBC)
Arguments
| :: Byteable iv | |
| => AES | AES Context | 
| -> iv | initial vector, usually representing a 128 bit integer | 
| -> ByteString | plaintext input | 
| -> ByteString | ciphertext output | 
encrypt using Counter mode (CTR)
in CTR mode encryption and decryption is the same operation.
Arguments
| :: Byteable iv | |
| => (AES, AES) | AES cipher and tweak context | 
| -> iv | a 128 bits IV, typically a sector or a block offset in XTS | 
| -> Word32 | number of rounds to skip, also seen a 16 byte offset in the sector or block. | 
| -> ByteString | input to encrypt | 
| -> ByteString | output encrypted | 
encrypt using XTS
the first key is the normal block encryption key the second key is used for the initial block tweak
Arguments
| :: Byteable iv | |
| => AES | AES Context | 
| -> iv | IV initial vector of any size | 
| -> ByteString | data to authenticate (AAD) | 
| -> ByteString | data to encrypt | 
| -> (ByteString, AuthTag) | ciphertext and tag | 
encrypt using Galois counter mode (GCM) return the encrypted bytestring and the tag associated
note: encrypted data is identical to CTR mode in GCM, however a tag is also computed.
decryption
decryptECB :: AES -> ByteString -> ByteStringSource
decrypt using Electronic Code Book (ECB)
decryptCBC :: Byteable iv => AES -> iv -> ByteString -> ByteStringSource
decrypt using Cipher block chaining (CBC)
Arguments
| :: Byteable iv | |
| => AES | AES Context | 
| -> iv | initial vector, usually representing a 128 bit integer | 
| -> ByteString | ciphertext input | 
| -> ByteString | plaintext output | 
decrypt using Counter mode (CTR).
in CTR mode encryption and decryption is the same operation.
Arguments
| :: Byteable iv | |
| => (AES, AES) | AES cipher and tweak context | 
| -> iv | a 128 bits IV, typically a sector or a block offset in XTS | 
| -> Word32 | number of rounds to skip, also seen a 16 byte offset in the sector or block. | 
| -> ByteString | input to decrypt | 
| -> ByteString | output decrypted | 
decrypt using XTS
Arguments
| :: Byteable iv | |
| => AES | Key | 
| -> iv | IV initial vector of any size | 
| -> ByteString | data to authenticate (AAD) | 
| -> ByteString | data to decrypt | 
| -> (ByteString, AuthTag) | plaintext and tag | 
decrypt using Galois Counter Mode (GCM)