https://zachgrace.com/tags/aes/Recent content in AES on Zach GraceHugoen-usFri, 17 Apr 2015 00:00:00 +0000https://zachgrace.com/posts/attacking-ecb/Fri, 17 Apr 2015 00:00:00 +0000https://zachgrace.com/posts/attacking-ecb/<p>On a recent engagement, I came across <a href="http://en.wikipedia.org/wiki/Block_cipher_mode_of_operation#Electronic_Codebook_.28ECB.29">Electronic Code Book (ECB)</a> encrypted data. While there&rsquo;s a plethora of documentation about performing bit flipping in ECB, I couldn&rsquo;t find any decent writeups on how to perform adaptive chosen plaintext attacks to recover ciphertext.</p> <p>In ECB mode, each block of plaintext is encrypted independently with the key as illustrated by the diagram below.</p> <img alt="ECB encryption.svg" title="ECB encryption - Wikipedia" src="//upload.wikimedia.org/wikipedia/commons/thumb/d/d6/ECB_encryption.svg/601px-ECB_encryption.svg.png" width="601" height="242" srcset="//upload.wikimedia.org/wikipedia/commons/thumb/d/d6/ECB_encryption.svg/902px-ECB_encryption.svg.png 1.5x, //upload.wikimedia.org/wikipedia/commons/thumb/d/d6/ECB_encryption.svg/1202px-ECB_encryption.svg.png 2x" data-file-width="601" data-file-height="242"> (Source: Wikipedia) <p>Since each block of plaintext is encrypted with the key independently, identical blocks of plaintext will yield identical blocks of ciphertext. The classic and poignant example of this property is an encrypted image of the Linux mascot, Tux. Below are three images, the original Tux image, an ECB encrypted Tux and a CBC encrypted Tux. The ECB encrypted Tux leaves visible artifacts whereas the CBC encrypted Tux looks like random data.</p>