- Notifications
You must be signed in to change notification settings - Fork0
LC-Linkous/cryptography_examples
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
This repo is a sample of some basic encryption methods, and some references for further reading. It is the public half of an interactive unit on encryption being developed for an undergraduate elective course. The full unit includes PPT slides, other VSCode examples*, and several group assignments.
Within the./src directory are groups of encryption methods sorted into categories such assubstitution,transposition andgrids. The public version of this repo does not go into modern encryption methods, such asAES.
Each encryption method has its own folder with the following:
encrypt.py- the encryption class, standardized input.decrypt.py- the brute force decryption class, standardized input.encrypt_test.py- an LLM generated test case for encryptiondecrypt_test.py- an LLM generated test case for decryption
These four files are the core demonstration of each algorithm. In some directories there may be additional files such asdecrypt_improved.py ordecrypt_improved_test.py. The contents of additional files are discussed in theDiscussion Section under their specific algorithm.
Claude AI was used to generate the test cases for thepublic version of this repo, in order to not give away any hints for the group assignments or demos. Claude AI also inserts extra commentary and examples, which is pretty fun for creating samples.NOTE: these test examples are very different in format from the PPT slides and demos, and shouldn't be used as a starting point for the group work. Theencrypt anddecrypt classes are currently 1:1 with the demos. For details on AI Usage and how it performed, see theNotes on AI as an Instructional Tool
*VSCode is the 'default' IDE to match the Python virtual environment tutorial that is shared between the tutorial units. Other IDEs and setups can be used if you have a preferred setup.
- What is Encryption?
- Requirements
- Implementation
- Included in this Project
- Some Algorithm Discussion
- Notes on AI as an Instructional Tool
- References
A message encrypted using a public key and decrypted using a private key
Encryption is a method of making transmitted information unreadable to anyone who is not the intended sender or recipient(s). These transmissions can be text, images, raw data, or any kind of information that can be digitized and sent between at least two points.
Algorithms for obfuscating text have been around for thousands of years. The 'Ceasar Cipher', where a message is encrypted with a shifted dictionary, is one of the most well-known early examples of a substitution cipher. Physical methods, such as using a scytale wrapped with pieces of parchment or leather to encode and decode messages in a transposition cipher have also existed for at least as long as substitution ciphers. There also exists entire secret languages that have been used in both spoken and written forms to communicate. (It turns out people have always been clever about sending secret messages!)
Why all the effort? When using complex algorithms, encryption ensures that even if the data is intercepted, it remains secure. This makes it essential for maintaining privacy and security in communications, including across the internet in the modern day.
In the figure above,Hello World! is encrypted with a public key, and then sent asEBIIL TLOIA!. The intended receiver, who has the private key, is able to decrypt the message into the originalHello World!.
This image, while simple, is a good introduction for several complex topics:
Public key cryptography, also calledasymmetric cryptography, uses a pair of keys in order to encode and decode messages. This is what is depicted in the image above. When the cryptographic algorithm is created, two keys are generated. One of these keys is thepublic keywhile the other is theprivate key. The public key is known by anyone and everyone, and can be used toverifythe message sender (the owner of the public key). The private key is knownonly by the intended message recipients, and is used to decode the message. There are several methods of combining public and private key usage in order to securely encrypt and decrypt messages. See theReferences for further reading.With the existence of
asymmetric cryptography, it makes sense that there is alsosymmetric cryptography. Symmetric key algorithms are algorithms that use the same key for encryption and decryption. This is the oldest and the most straightforward type of encryption. The keys can be identical, or they may have a simple reversal in order to 'undo' the encryption. This key should be thought of as aprivate key, and should only be shared between the sender and intended recipients. Having the private, shared, key is considered validation for this method. This method is less secure, but noticeably faster for encryption and transmission, which makes it appealing.There also exists various hybrid methods (
hybrid cryptosystems), which combine the benefits of both public key cryptography and symmetric cryptography. These are beyond this introduction, but have some reading in theReferences section.Hashing, or hash functions, is another topic that may come up, and is a form of encryption that is intended to go inone direction, unlike symmetric and asymmetric methods, which arebidirectional. Hashing is intended for verification, not decryption. For example, passwords submitted on a banking app may be stored in a database as a generated hash value rather than storing a password directly. When a user logs in to the app, the entered password is converted to a hash and then compared to the hash value in the database. The raw text of the password is not sent. This method is outside the scope of this introduction, but may appear in some demos.
TheHello World! text in the figure in this section was created using the included Ceasar Cipher, making the text actually from a symmetric encryption method as theprivate key is a simple reversal of thepublic key.
This repository was built and tested on Python 3.12. While effort was put into keeping the tools used in the example as generic as possible, at least Python 3.6 is needed in order to run some of the random and pseudo-random number generation functions properly.
pandasnumpy
Optionally, requirements can be installed manually with:
pipinstallpandas,numpy
This is an example for if you've had a difficult time with the requirements.txt file. Sometimes libraries are packaged together.
Each encryption method has its own folder with the following:
encrypt.py- the encryption class, standardized input.decrypt.py- the brute force decryption class, standardized input.encrypt_test.py- an LLM generated test case for encryptiondecrypt_test.py- an LLM generated test case for decryption
encrypt.py anddecrypt.py are stand alone and do not need the other to work. The test files use either the encrypt or decrypt classes to demonstrate how encryption and brute force encryption are used. The brute force method shown in this repo are not the only way the decrypt these, but they made good examples for the process.
In some repositories there may be adecrypt_improved.py and matchingdecrypt_improved_test.py, these are more detailed in their brute force attempts, but may only be more accurate orimproved under specific conditions. They are considered experimental and for educational purposes outside of the main demonstration.
Regarding non-English dictionaries, there are some hooks for that integration, but it is not fully implemented into these samples to keep them simple. A directory ofdefault_dictionaries has been included for generating different ASCII and Unicode dictionaries, but this is exploratory. They're also AI generated, which makes them fun to play with, but not particularly useful at this time.
Discussion of ciphers and history are included in the non-public half of this material; this repository is focused on the demo code.
In a substitution cipher, each letter (or symbol) in the plaintext is replaced by a corresponding letter (or symbol) in the ciphertext. The simplest of these are vulnerable to decryption even without having a private key due to frequency analysis. Some methods exist to make frequency analysis less effective.
- Ceasar Cipher
- This cipher is attributed to Julius Ceasar, and involves and alphabetical shift. The cipher is created by taking the plaintext and shifting it by a certain number of positions down or up the alphabet. It is one of the most common 'starting' ciphers used to introduce the topic of cryptography.
- Bacon Cipher
- Created by Francis Bacon in 1605, this is a type of steganography rather than just a cipher. Using this method, letters are encoded rather than the message. This method works like binary representation, where two characters (typically 'A' and 'B') are used in a series of 5 to represent a numerical value of a letter.
- Monoalphabetic Cipher
- This cipher creates a new dictionary with the same 1:1 relation as a Caesar Cipher, but the letters in the cipher dictionary can be randomly matched to their plaintext equivalent rather than determined by shifting.
- This is the most difficult of the substitution ciphers in this section to brute force, and requires some tuning. HOWEVER, even when it does not preform perfectly, it often results in a starting point for further analysis. For example, a high-scoring but incorrect result is still partialy readable.
A transposition cipher uses the message itself as a form of obfuscation. Rather than changing the letters (substituting), the letters in the message are rearranged to make the message unreadable.
- Rail Fence
- This cipher is named for its distinctive 'zig zag' pattern where the plaintext is written up and down columns ('rails') and then read across the rows to create the cipher text. This can be brute forced by reconstructing the zigzag pattern.
- Block
- A block cipher ia s symmetric algorithm that encrypt data in 'blocks' rather than one at a time (as in a stream cipher). This algorithm is a foundational model used in the DES algorithm.
- The 'block' cipher in this example is a Feistel cipher (also known as Luby–Rackoff block cipher). It was named after Horst Feistel, who was a physicist and cryptographer working at IBM.
The grid ciphers in this section have some relation to the substitution and transposition ciphers in the previous sections, but are notable for their distinctive grid pattern used in the encoding.
Polybius
- A Polybius cipher uses a 5x5 grid in order to encode letters into numerical coordinates of a grid. This is a type of
substitutioncipher. - Attributed to the Green historian Polybius.
- A Polybius cipher uses a 5x5 grid in order to encode letters into numerical coordinates of a grid. This is a type of
ADFGVX
- This is a WW1 cipher used to send encrypted messages over radiotelegraphy/wireless telemetry. It is a revised version of the earlier ADFGV cipher and uses a modified Polybius square (6x6 compared to the 5x5).
- This is a
transpositioncipher but is in this section due to the grid used in the algorithm. This grid form made it possible to implement manually.
RC4
- RC4 is a once-popular stream cipher designed in 1987. It has since fallen into disuse due to discovered vulnerabilities. Attacks against this cipher include the 2001Fluhrer-Mantin-Shamir attack and attacks against biases in the keystream, and the 2005 attack byAndreas Klein, which builds upon previous attacks. Later attacks are not examined here.
ChaCha20
- ChaCha20 generates a pseudo-random keystream which is then XOR'ed with the plaintext to encrypt it. This method requires a key and a nonce. This cipher originated in 2008 as a family of ciphers.
- Key: a secret value, typically 32 byte/256 bits, used to initialize a cipher's state
- Nonce: an 8-byte, 12-byte, or 24-byte number used onlyonce with any given key. ChaCha20 typically uses 12 bytes/96 bits.
NOTE about the included stream ciphers:
- Decryption on a stream cipher is non-trivial, so the included
decrypt.pyfor each example uses a small selection of common attacks (e.g., dictionary attacks, frequency analysis, true 'try all combinations' brute force) that are discussed in terms of analysis. In some cases where the cipher algorithm has been completely broken, an example of that attack may be implemented. There are no 'test' attacks on algorithms included in this repository.
This section discusses the general operation of the algorithms in terms of the input, output, and some tuning. In-depth discussion is reserved for the PPTs and group assignments.
Accuracy could be improved for all of these algorithms by implementing a dictionary or spellcheck program to identify actual English. This would slow automated detection drastically, however. It is also beyond the scope of this introduction.
- Ceasar Cipher
This is one of the easier algorithms to brute force given the limited solution space. The alphabet can only shift left or right, not scramble. A brute force decryption for a Ceasar Cipher involves trying every possible combination and then scoring based on English (in this case) letter frequency.
encrypt.py- the encryption class, standardized input.decrypt.py- the brute force decryption class, standardized input.encrypt_test.py- an LLM generated test case for encryptiondecrypt_test.py- an LLM generated test case for decryption
Encryption:
===EncryptionDictionary===Original:ABCDEFGHIJKLMNOPQRSTUVWXYZEncrypted:XYZABCDEFGHIJKLMNOPQRSTUVW===EncryptionExamples==='ABC'->'XYZ''HELLO'->'EBIIL''WORLD'->'TLOIA''HELLO WORLD!'->'EBIIL TLOIA!''ABC123'->'XYZ123''ZEBRA'->'WBYOX'
Decryption:
============================================================TESTCASE1:'KHOOR ZRUOG'============================================================Tryingoffsets0to51...============================================================Top3mostlikelydecryptions:============================================================1.Offset16 (Score:-800.8):aXeehphkeW2.Offset42 (Score:-800.8):AxEEHPHKEw3.Offset20 (Score:-878.3):ebiiltloiaMostlikelydecryption:'aXeeh phkeW'============================================================TESTCASE2:'WKH TXLFN EURZQ IRA MXPSV RYHU WKH ODCB GRJ'============================================================Tryingoffsets0to51...============================================================Top3mostlikelydecryptions:============================================================1.Offset23 (Score:-171.8):thequickbrownfoXjumpsoverthelaZYdog2.Offset49 (Score:-171.8):THEQUICKBROWNFOxJUMPSOVERTHELAzyDOG3.Offset13 (Score:-291.8):jXUgkYSaRhemdVeNZkcfielUhjXUbQPOTeWMostlikelydecryption:'the quick brown foX jumps over the laZY dog'============================================================TESTCASE3:'JBHF GUVF VF N GRKF ZRFFNTR'============================================================Tryingoffsets0to51...============================================================Top3mostlikelydecryptions:============================================================1.Offset13 (Score:-495.1):WOUSThiSiSaTeXSmeSSage2.Offset39 (Score:-495.1):woustHIsIsAtExsMEssAGE3.Offset9 (Score:-596.8):SKQOPdeOeOWPaTOiaOOWcaMostlikelydecryption:'WOUS ThiS iS a TeXS meSSage'
- Bacon Cipher
The Bacon Cipher is another relatively straightforward cipher to brute force. It has a limited dictionary and can still be broken with frequency analysis. Each single character is replaced with a binary representation (with ‘1’ and ‘0’ replaced with any arbitrary 2 symbols), and the text is not scrambled.
encrypt.py- the encryption class, standardized input.decrypt.py- the brute force decryption class, standardized input.encrypt_test.py- an LLM generated test case for encryptiondecrypt_test.py- an LLM generated test case for decryption
Encryption:
===EncryptionDictionary===Baconianciphermapping (using'A'and'B'):Variant:26-letter (allseparate)A->AAAAAB->AAAABC->AAABAD->AAABBE->AABAAF->AABABG->AABBAH->AABBBI->ABAAAJ->ABAAB===EncryptionExamples==='ABC'->'AAAAAAAAABAAABA''HELLO'->'AABBBAABAAABABBABABBABBBA''WORLD'->'BABBAABBBABAAABABABBAAABB''HELLO WORLD'->'AABBBAABAAABABBABABBABBBA BABBAABBBABAAABABABBAAABB''ABC123'->'AAAAAAAAABAAABA123''ZEBRA'->'BBAABAABAAAAAABBAAABAAAAA'===DifferentSymbolSets===Symbols'0'/'1':'HELLO'->'0011100100010110101101110'Symbols'.'/'-':'HELLO'->'..---..-...-.--.-.--.---.'Symbols'*'/'#':'HELLO'->'**###**#***#*##*#*##*###*'Symbols'X'/'O':'HELLO'->'XXOOOXXOXXXOXOOXOXOOXOOOX'
Decryption:
================================================================================TESTCASE1:'AABBBAABAAABABBABABBABBBA'(Expected:HELLO)================================================================================Top3mostlikelydecryptions:================================================================================1.Symbols:'A'/'B' (26-letter)-Score:-1600.8Result:HELLO2.Symbols:'B'/'A' (24-letter)-Score:-1728.7Result:ASZKKBBBA3.Symbols:'B'/'A' (26-letter)-Score:-1815.1Result:YAXJJBBBAMostlikelydecryption:'HELLO'================================================================================TESTCASE2:'100100010000010100010010010011'(Expected:SECRET)================================================================================Top3mostlikelydecryptions:================================================================================1.Symbols:'0'/'1' (26-letter)-Score:-813.2Result:SECRET2.Symbols:'0'/'1' (24-letter)-Score:-891.7Result:TECSEU3.Symbols:'1'/'0' (26-letter)-Score:-8343.9Result:10010001A10100010010010011Mostlikelydecryption:'SECRET'================================================================================TESTCASE3:'....-........-..---..--.-'(Expected:BACON)================================================================================Top3mostlikelydecryptions:================================================================================1.Symbols:'.'/'-' (26-letter)-Score:-1035.9Result:BACON2.Symbols:'.'/'-' (24-letter)-Score:-1186.6Result:BACPO3.Symbols:'-'/'.' (26-letter)-Score:-2957.8Result: ...X....WG-.-Mostlikelydecryption:'BACON'================================================================================TESTCASE4:'BAABBAABAABAABABAABB'(Expected:TEST)================================================================================Top3mostlikelydecryptions:================================================================================1.Symbols:'B'/'A' (24-letter)-Score:-1621.6Result:NAYAXABB2.Symbols:'B'/'A' (26-letter)-Score:-1661.4Result:MAWAVABB3.Symbols:'A'/'B' (26-letter)-Score:-2078.8Result:TEST
- Monoalphabetic Cipher
The Monoalphabetic cipher is the most difficult substitution example in this collection and requires some tuning. However, even when it does not perform perfectly, it often results in a starting point for further analysis. For example, a high-scoring but incorrect result is still partially readable. What’s happening is that the text is English-like statistically with the frequency of letter distribution, even if it is very distinctly not English. To improve the decryption, context dependent words can be added to the dictionary.
encrypt.py- the encryption class, standardized input.decrypt.py- the brute force decryption class, standardized input.encrypt_test.py- an LLM generated test case for encryptiondecrypt_test.py- an LLM generated test case for decryptiondecrypt_improved_test.py- an LLM generated test case for decryptiondecrypt_improved.py- The originaldecrypt.pyclass for this cipher uses a 'hill climbing' approach, which only accepts new solutions that are BETTER than the previous answer. This can cause the algorithm to get stuck in a local optimum since it cannot 'backtrack'. This algorithm allows for backtracking. There is a noticeable improvement in general decryption accuracy, but it is less accurate than adding context-specific words to the dictionary (see the decryption results with ['CRYPTOGRAPHY','SUBSTITUTION','CIPHER','METHOD','ENCRYPT'] added to the dictionary). These results are not surprising. A more intelligent algorithm may be able to more accurately predict the text without dictionary additions.
Encryption:
===EncryptionExamples===Usingrandomkey (seed=42):'ABC'->'IQA''HELLO'->'BLMME''WORLD'->'KEWMY''HELLO WORLD'->'BLMME KEWMY''ABC123'->'IQA123''ATTACKATDAWN'->'IZZIACIZYIKD'Usingcustomkey (alphabetbackwards):'ABC'->'ZYX''HELLO'->'SVOOL''WORLD'->'DLIOW''HELLO WORLD'->'SVOOL DLIOW''ABC123'->'ZYX123''ATTACKATDAWN'->'ZGGZXPZGWZDM'
Decryption Test Case 5, Encrypted Text:
================================================================================TESTCASE5:'''RM XIBKGLTIZKSB Z HFYHGRGFGRLM XRKSVI RH Z NVGSLW LU VMXIBKGRMTRM DSRXS FMRGH LU KOZRMGVCG ZIV IVKOZXVW DRGS GSV XRKSVIGVCG RM Z WVURMVW NZMMVIDRGS GSV SVOK LU Z PVB GSV FMRGH NZB YV HRMTOV OVGGVIH GSV NLHG XLNNLM KZRIHLU OVGGVIH GIRKOVGH LU OVGGVIH NRCGFIVH LU GSV ZYLEV ZMW HL ULIGS GSV IVXVREVIWVXRKSVIH GSV GVCG YB KVIULINRMT GSV RMEVIHV HFYHGRGFGRLM KILXVHH GL VCGIZXGGSV LIRTRMZO NVHHZTV HFYHGRGFGRLM XRKSVIH XZM YV XLNKZIVW DRGS GIZMHKLHRGRLMXRKSVIH RM Z GIZMHKLHRGRLM XRKSVI GSV FMRGH LU GSV KOZRMGVCG ZIV IVZIIZMTVWRM Z WRUUVIVMG ZMW FHFZOOBJFRGV XLNKOVC LIWVI YFG GSV FMRGH GSVNHVOEVH ZIVOVUG FMXSZMTVW YB XLMGIZHG RM Z HFYHGRGFGRLM XRKSVI GSV FMRGH LU GSV KOZRMGVCGZIV IVGZRMVW RM GSV HZNV HVJFVMXV RM GSV XRKSVIGVCG YFG GSV FMRGH GSVNHVOEVH ZIVZOGVIVW'''(Expected:INCRYPTOGRAPHYASUBSTITUTIONCIPHER... [longtext])
Iteration with 'default' dictionary. Score: 2269.6
'''ON CRBUTPKRAUHB A IMWITOTMTOPN COUHER OI A GETHPD PL ENCRBUTONK ON XHOCH MNOTIPL USAONTEFT ARE REUSACED XOTH THE COUHERTEFT ON A DELONED GANNER XOTH THE HESU PLA QEB THE MNOTI GAB WE IONKSE SETTERI THE GPIT CPGGPN UAORI PL SETTERI TROUSETI PLSETTERI GOFTMREI PL THE AWPVE AND IP LPRTH THE RECEOVER DECOUHERI THE TEFT WB UERLPRGONK THE ONVERIE IMWITOTMTOPN URPCEII TP EFTRACT THE PROKONAS GEIIAKE IMWITOTMTOPN COUHERI CAN WE CPGUARED XOTH TRANIUPIOTOPN COUHERI ON A TRANIUPIOTOPN COUHER THE MNOTI PL THE USAONTEFT ARE REARRANKED ON A DOLLERENT AND MIMASSBJMOTE CPGUSEF PRDER WMT THE MNOTI THEGIESVEI ARE SELT MNCHANKED WB CPNTRAIT ON A IMWITOTMTOPN COUHER THE MNOTI PL THE USAONTEFT ARE RETAONED ON THE IAGE IEJMENCE ON THE COUHERTEFT WMT THE MNOTI THEGIESVEI ARE ASTERED'''Keysample:P->Q,J->J,B->B,K->U,Z->A,W->D,N->G,S->H,E->V,H->I...
Iteration with ['SUBSTITUTION','METHOD'] added to the dictionary. Score: 2490.9
'''IN CRBSTOGRASHB A DJKDTITJTION CISHER ID A METHOP OU ENCRBSTING IN WHICH JNITD OUSLAINTEFT ARE RESLACEP WITH THE CISHERTEFT IN A PEUINEP MANNER WITH THE HELS OU A QEBTHE JNITD MAB KE DINGLE LETTERD THE MODT COMMON SAIRD OU LETTERD TRISLETD OU LETTERDMIFTJRED OU THE AKOVE ANP DO UORTH THE RECEIVER PECISHERD THE TEFT KB SERUORMING THEINVERDE DJKDTITJTION SROCEDD TO EFTRACT THE ORIGINAL MEDDAGE DJKDTITJTION CISHERD CANKE COMSAREP WITH RANDSODITION CISHERD IN A TRANDSODITION CISHER THE JNITD OU THESLAINTEFT ARE REARRANGEP IN A PIUUERENT ANP JDJALLBXJITE COMSLEF ORPER KJT THE JNITDTHEMDELVED ARE LEUT JNCHANGEP KB CONTRADT IN A DJKDTITJTION CISHER THE JNITD OU THESLAINTEFT ARE RETAINEP IN THE DAME DEXJENCE IN THE CISHERTEFT KJT THE JNITD THEMDELVEDARE ALTEREP'''Keysample:R->I,B->B,F->J,O->L,D->W,G->T,S->H,I->R,Z->A,H->D...
Iteration with ['CRYPTOGRAPHY','SUBSTITUTION','CIPHER','METHOD','ENCRYPT'] added to the dictionary. Score: 2706.2
'''IN CRYPTOGRAPHY A UMKUTITMTION CIPHER IU A SETHOD OF ENCRYPTING IN WHICH MNITU OFPLAINTEXT ARE REPLACED WITH THE CIPHERTEXT IN A DEFINED SANNER WITH THE HELP OF A BEYTHE MNITU SAY KE UINGLE LETTERU THE SOUT COSSON PAIRU OF LETTERU TRIPLETU OF LETTERUSIXTMREU OF THE AKOVE AND UO FORTH THE RECEIVER DECIPHERU THE TEXT KY PERFORSING THEINVERUE UMKUTITMTION PROCEUU TO EXTRACT THE ORIGINAL SEUUAGE UMKUTITMTION CIPHERU CANKE COSPARED WITH RANUPOUITION CIPHERU IN A TRANUPOUITION CIPHER THE MNITU OF THEPLAINTEXT ARE REARRANGED IN A DIFFERENT AND MUMALLYJMITE COSPLEX ORDER KMT THE MNITUTHESUELVEU ARE LEFT MNCHANGED KY CONTRAUT IN A UMKUTITMTION CIPHER THE MNITU OF THEPLAINTEXT ARE RETAINED IN THE UASE UEJMENCE IN THE CIPHERTEXT KMT THE MNITUTHESUELVEU ARE ALTERED'''Keysample:Z->A,R->I,M->N,G->T,S->H,V->E,I->R,H->U,L->O,K->P...
- Rail Fence
The Rail Fence cipher can be brute forced by working backwards from the length of the message to the number of rails. One difficulty here is that the letter frequency is preserved due to the words being scrambled. An exhaustive search is possible, given that the maximum number of rails in a text of length N is N rails. However, pattern analysis will likely yield results quicker.
encrypt.py- the encryption class, standardized input.decrypt.py- the brute force decryption class, standardized input.encrypt_test.py- an LLM generated test case for encryptiondecrypt_test.py- an LLM generated test case for decryption
Encryption:
===3Rails,Direction:down,RemoveSpaces:True===RailFencecipherwith3rails:Direction:downTextlength:10Railvisualization:Rail0:HOLRail1:ELWRDRail2:LORailpattern: [0,1,2,1,0,1,2,1,0,1]Original:'HELLO WORLD'Encrypted:'HOLELWRDLO'Decrypted:'HELLOWORLD'Match:True===4Rails,Direction:down,RemoveSpaces:True===RailFencecipherwith4rails:Direction:downTextlength:10Railvisualization:Rail0:HORail1:EWRRail2:LOLRail3:LDRailpattern: [0,1,2,3,2,1,0,1,2,3]Original:'HELLO WORLD'Encrypted:'HOEWRLOLLD'Decrypted:'HELLOWORLD'Match:True
Decryption:
Detailedanalysisof:'HOLELWRDLO'(Correctencryptionof'HELLOWORLD'with3rails)===DetailedAnalysis:2Rails===Encrypted:'HOLELWRDLO'Decrypted:'HWORLDELLO'Score:-900.0Textlength:10Patternperiod:2Raildistribution: {0:5,1:5}Patternsample: [0,1,0,1,0,1,0,1,0,1]Railvisualization:Rail0:HOLELRail1:WRDLO===DetailedAnalysis:3Rails===Encrypted:'HOLELWRDLO'Decrypted:'HELLOWORLD'Score:-870.0Textlength:10Patternperiod:4Raildistribution: {0:3,1:5,2:2}Patternsample: [0,1,2,1,0,1,2,1,0,1]Railvisualization:Rail0:HOLRail1:ELWRDRail2:LO===DetailedAnalysis:4Rails===Encrypted:'HOLELWRDLO'Decrypted:'HLWLREOLDO'Score:-918.0Textlength:10Patternperiod:6Raildistribution: {0:2,1:3,2:3,3:2}Patternsample: [0,1,2,3,2,1,0,1,2,3]Railvisualization:Rail0:HORail1:LELRail2:WRDRail3:LO===DetailedAnalysis:5Rails===Encrypted:'HOLELWRDLO'Decrypted:'HLWDOLREOL'Score:-913.0Textlength:10Patternperiod:8Raildistribution: {0:2,1:3,2:2,3:2,4:1}Patternsample: [0,1,2,3,4,3,2,1,0,1]Railvisualization:Rail0:HORail1:LELRail2:WRRail3:DLRail4:O
- Block
Classical ciphers have search space of 26! ≈ 4×10²⁶, but this type of cipher has a search space on the scale of 2¹²⁸ ≈ 3×10³⁸ (AES-128), making it impossible to attempt an exhaustive search on your average computer. Instead, more intelligent attacks must be utilized to get the key for decryption. The decryption files included for this example only provide an analysis of a sample of search results based on user settings. This algorithm is a good comparison, however, because it is the backbone of modern-day encryption.
encrypt.py- the encryption class, standardized input.decrypt.py- the brute force decryption class, standardized input.encrypt_test.py- an LLM generated test case for encryptiondecrypt_test.py- an LLM generated test case for decryptiondecrypt_improved_test.py- an LLM generated test case for decryptiondecrypt_improved.py- The 'improved' version of this algorithm was created by letting Claude AI make changes in order to make the decryption algorithm more accurate. It added a very specific dictionary so that the test cases passed more often. There are several group questions comparing & contrasting results and methods. Otherwise, the decryption typically fails.
Encryption:
================================================================================CONFIGURATION1================================================================================BlockCipherConfiguration:Blocksize:8bytesNumberofrounds:3Key:0123456789ABCDEFPaddingmode:PKCS7Outputformat:hexS-box (first16values): ['0xe4','0x6','0x4f','0xce','0x75','0xb9','0xf2','0xa7','0x9','0x1e','0xb4','0xde','0xe6','0xd9','0x88','0x44']P-box (bitpositions): [0,1,3,7,4,2,5,6]Roundkeys:Round1:2344658AAFC8E906Round2:44678AA9C8EB0625Round3:658AABCCE9062740===TestingMessages==='HELLO'->'84448CA0F2AD4F7D'->'HELLO' (Match:True)'HELLO WORLD'->'84448CA0F254C2B0F4B508E07FB449A3'->'HELLO WORLD' (Match:True)'THE QUICK BROWN FOX JUMPS OVER THE LAZY DOG'->'1D246C09677927883482F6C1F24362D44449BE097B7910811482C6A6DBE0EBF68444D0A0ED6B95D4C749B8E07FB449A3'-> 'THEQUICKBROWNFOXJUMPSOVERTHELAZYDOG' (Match:True)
Decryption (attempt. There are no results here):
===AnalysisofUnknownCiphertext===Ciphertext:A1B2C3D4E5F67890A1B2C3D4E5F67890A1B2C3D4E5F67890A1B2C3D4E5F67890A1B2C3D4E5F67890A1B2C3D4E5F67890A1B2C3D4E5F67890A1B2C3D4E5F67890===ComprehensiveBlockCipherCryptanalysis===Analyzing8blocksof8byteseach===============================================================StatisticalRandomnessTests===Chi-squaretest (bytefrequency):Chi-squarestatistic:1922.00Expectedforrandom:~255Assessment:FAILRunstest (consecutivebytes):Observedruns:63Expectedruns:31.5Deviation:1.000Assessment:FAILAutocorrelationtest (lag=1):Correlationcoefficient:0.2946Assessment:FAIL===============================================================FrequencyAnalysisAttack===Analyzed8ciphertextblocksBlockfrequencyanalysis:a1b2c3d4e5f67890:8times (100.000%)Repeatedblocks (ECBvulnerability):1Bytefrequencybyposition:Position0:0xA1appears8times (100.000%)Position1:0xB2appears8times (100.000%)Position2:0xC3appears8times (100.000%)Position3:0xD4appears8times (100.000%)Position4:0xE5appears8times (100.000%)Position5:0xF6appears8times (100.000%)Position6:0x78appears8times (100.000%)Position7:0x90appears8times (100.000%)===============================================================ExhaustiveKeySearch (max1000keys)===Keyspace:2^16=65,536totalkeysTestingonly1,000keysfordemonstration...Found0candidatekeys
- Polybius
The Polybius cipher is possible to brute force due to its size (5x5 or 6x6), making an exhaustive search possible. While the Polybius Square can be randomized, there are still a limited number of cells. Frequency analysis can also be used to decode this cypher without reconstructing the original grid. This makes the decryption methods similar to the Monoalphabetic cipher shown earlier.
encrypt.py- the encryption class, standardized input.decrypt.py- the brute force decryption class, standardized input.encrypt_test.py- an LLM generated test case for encryptiondecrypt_test.py- an LLM generated test case for decryption
Encryption:
================================================================================CONFIGURATION1================================================================================PolybiusSquare (5x5):Combinedletters:IJNumberbase:1 (1-based)123451FUYRH2QZXGV3PSKAL4NDTCB5WOEMCoordinateexamples:A →34E →53M →54Z →22GridStatistics:grid_size:5x5total_positions:25filled_positions:24keyword_used:Falsecombine_letters:IJnumber_base:1separator:' '===TestingMessages==='HELLO'->'15 53 35 35 52'->'HELLO' (Match:True)'HELLO WORLD'->'15 53 35 35 52 51 52 14 35 42'->'HELLOWORLD' (Match:False)Note:J→IsubstitutionexpectedwithIJcombination'ATTACK AT DAWN'->'34 43 43 34 44 33 34 43 42 34 51 41'->'ATTACKATDAWN' (Match:False)Note:J→IsubstitutionexpectedwithIJcombination================================================================================CONFIGURATION3================================================================================PolybiusSquare (5x5):Combinedletters:IJNumberbase:0 (0-based)012340BFCRA1SETPO2KUXWL3NQHZM4DVYGCoordinateexamples:A →04E →11M →34Z →33GridStatistics:grid_size:5x5total_positions:25filled_positions:24keyword_used:Falsecombine_letters:IJnumber_base:0separator:'-'===TestingMessages==='HELLO'->'32-11-24-24-14'->'HELLO' (Match:True)'HELLO WORLD'->'32-11-24-24-14- -23-14-03-24-40'->'HELLO WORLD' (Match:True)'ATTACK AT DAWN'->'04-12-12-04-02-20- -04-12- -40-04-23-30'->'ATTACK AT DAWN' (Match:True)
Decryption:
===CREATINGPROPERTESTCASES===Standardgridcoordinatemapping:H →23E →15L →25O →33W →51R →41D →14'HELLO WORLD'encryptsto:23152525335133412514SECRETgridcoordinatemapping:S →11E →12C →13R →14T →15'SECRET'encryptsto:111213141215============================================================TEST:StandardGrid-HELLOWORLD===============================================================CiphertextAnalysis===Text:23152525335133412514Length:29Possibleseparatorsfound: [' ']Coordinatepairsfound:10Samplepairs: ['23','15','25','25','33','51','33','41','25','14']Rowcoordinates:1to5Colcoordinates:1to5Likely1-basednumberingSuggestedgridsize:5x5Suggestednumberbase:1CorrectGridConfiguration:PolybiusSquare (5x5):StandardalphabeticalarrangementCombinedletters:IJNumberbase:1 (1-based)123451ABCDE2FGHKL3MNOPQ4RSTUV5WXYZCoordinateexamples:11 →A15 →E31 →M54 →ZKnowndecryption:'HELLOWORLD'Expected:'HELLOWORLD'Match:True
- ADFGVX
The use of a 2-step substitution and transposition (or the reverse, depending on if you're encrypting or decrypting) makes this trickier to decode than the Polybius Cipher even though they may take up the same physical size for the grid. However, this algorithm is still possible to brute force through an exhaustive search or frequency analysis.
encrypt.py- the encryption class, standardized input.decrypt.py- the brute force decryption class, standardized input.encrypt_test.py- an LLM generated test case for encryptiondecrypt_test.py- an LLM generated test case for decryption
Encryption:
================================================================================CONFIGURATION1================================================================================ADFGVXCipherConfiguration:RandomGrid (seed:42)TranspositionKeyword:'SECRET'TranspositionOrder: [4,2,1,3,5]SubstitutionGrid (6x6):ADFGVXAJMF16TD4ZW05KFL2IUQ9GGYA8NSVC73VDXXEOPRBHSubstitutionExamples:A →GFE →XAM →ADZ →DD5 →DV9 →FXCipherStatistics:cipher_type:ADFGVXgrid_size:6x6total_characters:36grid_keyword_used:Falsegrid_keyword:Nonetransposition_keyword:SECRETtransposition_length:5transposition_order: [4,2,1,3,5]random_seed:42separator:''===TestingMessages==='HELLO'->'XAXFAXXAFD''HELLO WORLD'->'XAXAXFFFAXDVXADGFDXV''ATTACK AT DAWN'->'AFGVGFGXVFXVFGVGXDXDAAAFX'
Decryption:
===CREATINGPROPERTESTCASES===Testcipherconfiguration:ADFGVXCipherConfiguration:RandomGrid (seed:42)TranspositionKeyword:'KEY'TranspositionOrder: [2,1,3]SubstitutionGrid (6x6):ADFGVXAJMF16TD4ZW05KFL2IUQ9GGYA8NSVC73VDXXEOPRBHCoordinateexamples:GF →AXA →EAD →MDD →ZDV →5FX →9===MANUALENCRYPTIONTRACE (fortesting)===Let's trace how 'HELLO'wouldbeencryptedwiththisconfiguration:Gridlookup (manual):Character →Coordinatemapping:H →XXE →XAL →FAL →FAO →XDAftersubstitution:'XXXAFAFAXD'Transpositionkeyword:'KEY'Alphabeticalorder: [2,0,1]Paddedsubstitutedtext:'XXXAFAFAXDXX'Row1:XXXRow2:AFARow3:FAXRow4:DXXColumnE:'XFAX'ColumnK:'XAFD'ColumnY:'XAXX'Simulatedencryptedresult:'XFAX XAFD XAXX'===TESTINGDECRYPTION===Decryptedresult:'HELLO'Originalmessage:'HELLO'Match:True===STEP-BY-STEPDEMONSTRATION======ADFGVXCIPHERDECRYPTIONDEMONSTRATION===Encryptedtext:'XFAX XAFD XAXX'ADFGVXCipherConfiguration:RandomGrid (seed:42)TranspositionKeyword:'KEY'TranspositionOrder: [2,1,3]SubstitutionGrid (6x6):ADFGVXAJMF16TD4ZW05KFL2IUQ9GGYA8NSVC73VDXXEOPRBHCoordinateexamples:GF →AXA →EAD →MDD →ZDV →5FX →9===STEP1:REVERSETRANSPOSITION===Afterreversingtransposition:'XXXAFAFAXD'===STEP2:REVERSESUBSTITUTION===Coordinatepairstodecode:XX →HXA →EFA →LFA →LXD →OFinaldecryptedtext:'HELLO'Demoresult:'HELLO'
- RC4
encrypt.py- the encryption class, standardized input.decrypt.py- the brute force decryption class, standardized input.encrypt_test.py- an LLM generated test case for encryptiondecrypt_test.py- an LLM generated test case for decryptionkey_comparison_demo.py- a demonstration of how dictionaries with partial keys in a brute force attack might preformklein_demo.py- a demo of the Klein attack for real decryption of RC4
The decryption attempts below usingkey_comparison_demo.py shows that during the brute force attempt with the 18 keys, it is possible to decrypt a message from this algorithm by running down the list in the dictionary. Notice that keys using repeating dictionary words are able to be decrypted, but deviations from the dictionary mean that the message may not (and probably not) be decrypted.
Encryption:
RC4StateInformation:Key:'SECRET'===TestingMessages==='HELLO' →D42B203340'RC4' →CE2D58'HELLO WORLD' →D42B203340007487B02AF8RC4StateInformation:Key:'ThisIsALongerSecretKey123'===TestingMessages==='HELLO' →3099B29409'RC4' →2A9FCA'HELLO WORLD' →3099B2940970426389CECB
Cipher symmetry demo (not decryption):
============================================================RC4SYMMETRYDEMONSTRATION===============================================================RC4SYMMETRYDEMONSTRATION===Plaintext:'SECRET'Key:'KEY'---Step1:Encryption---===RC4KeySchedulingAlgorithm (KSA)forDecryption===Key:'KEY'=4B4559Keylength:3bytesInitialS-box: [0,1,2, ...,255]i=0:j=(0+0+75)%256=75,swapS[0]↔S[75]i=1:j=(76+1+69)%256=145,swapS[1]↔S[145]i=2:j=(147+2+89)%256=236,swapS[2]↔S[236]i=3:j=(-17+3+75)%256=58,swapS[3]↔S[58]i=4:j=(62+4+69)%256=131,swapS[4]↔S[131]i=5:j=(136+5+89)%256=225,swapS[5]↔S[225]i=6:j=(-25+6+75)%256=50,swapS[6]↔S[50]i=7:j=(57+7+69)%256=126,swapS[7]↔S[126]FinalS-boxfirst16values: [28,170,236,58,131,225,50,126,223,214,96,52,61,143,246,32]FinalS-boxlast16values: [173,55,99,75,196,124,102,82,91,135,87,149,23,212,114,108]===RC4Pseudo-RandomGenerationAlgorithm (PRGA)forDecryption===Generating6keystreambytes...Step|i|j|S[i]|S[j]|S[i]+S[j]|S[sum]|Keystream-----------------------------------------------------------------0|1|170|81|170|251|149|0x951|2|150|30|236|10|96|0x602|3|208|60|58|118|252|0xFC3|4|83|31|131|162|84|0x544|5|52|230|225|199|182|0xB65|6|102|219|50|13|143|0x8FCiphertext:C625BF06F3DB---Step2:Decryption---===RC4KeySchedulingAlgorithm (KSA)forDecryption===Key:'KEY'=4B4559Keylength:3bytesInitialS-box: [0,1,2, ...,255]i=0:j=(0+0+75)%256=75,swapS[0]↔S[75]i=1:j=(76+1+69)%256=145,swapS[1]↔S[145]i=2:j=(147+2+89)%256=236,swapS[2]↔S[236]i=3:j=(-17+3+75)%256=58,swapS[3]↔S[58]i=4:j=(62+4+69)%256=131,swapS[4]↔S[131]i=5:j=(136+5+89)%256=225,swapS[5]↔S[225]i=6:j=(-25+6+75)%256=50,swapS[6]↔S[50]i=7:j=(57+7+69)%256=126,swapS[7]↔S[126]FinalS-boxfirst16values: [28,170,236,58,131,225,50,126,223,214,96,52,61,143,246,32]FinalS-boxlast16values: [173,55,99,75,196,124,102,82,91,135,87,149,23,212,114,108]===RC4Pseudo-RandomGenerationAlgorithm (PRGA)forDecryption===Generating6keystreambytes...Step|i|j|S[i]|S[j]|S[i]+S[j]|S[sum]|Keystream-----------------------------------------------------------------0|1|170|81|170|251|149|0x951|2|150|30|236|10|96|0x602|3|208|60|58|118|252|0xFC3|4|83|31|131|162|84|0x544|5|52|230|225|199|182|0xB65|6|102|219|50|13|143|0x8FDecrypted:'SECRET'---Verification---Keystream1:9560FC54B68FKeystream2:9560FC54B68FKeystreamsidentical:TrueDecryptionsuccessful:True# NOT REAL DECRYPTION!! This re-used a function call to compare the two, but they SHOULD match because this algorithm is symmetric
Decryption withkey_comparison_demo.py:
STEP1:ENCRYPTINGMESSAGES==================================================1.'HELLO'+key'KEY' →DD25B018F92.'SECRET'+key'ABC' →9D611DC10AFA3.'TEST'+key'123' →07B5ECD64.'RC4'+key'X' →B7C3C55.'BRUTE'+key'PASS' →C2D2A9DEB66.'TESTTESTTESTTESTTESTTEST'+key'PEANUTBUTTER' →B901B1D905B94619715026232C779904EE2A80F5B99DFDAA7.'THE QUICK BROWN FOX JUMPED OVER THE LAZY DOG'+key'QUICKBROWNFOX' →4D2F0712D8C84303DF0E8AEEFA73ACC5CEFBE9CA9CE3B9EACF309A80674C65E984DE5730BC6BA6F7636FA6548.'THE QUICK BROWN FOX JUMPED OVER THE LAZY DOG'+key'FOXFOXFOXFOX' →7447591A0418A1EA1FABAAAC2FE8B73423BCA23F6FD72419ABB46A9FBF396B2CC7C72983CDFE31D35A5BF81B9.'THE QUICK BROWN FOX JUMPED OVER THE LAZY DOG'+key'F' →C11C78918F720AA0A34130F8A8894E81EA0C2A3EAD9A7F2F8504E094617CB50D3D7A1698606D38BDB2C8EB6510.'THIS is a LONGER PHRASE with mixed letters'+key'KEYKEYKEYKEYKEY' →C128B50796E637D857A4B7C9BE18967F566530651DE0D0008151C5E0C2AAB12207559CB8F9F93AF3275B11.'THIS is a LONGER PHRASE with mixed letters'+key'AMOREDIFFICULTKEY' →F01C043F1FE9CC68EAEA4C50DECBE16AA85C79D44C0DC1A93EF1CA16AFAE863D820D6036690A532CD666STEP2:BRUTEFORCEDECRYPTIONATTEMPTS==================================================1.Bruteforcing:DD25B018F9 (Original:'HELLO'withkey'KEY')SUCCESS!Key'KEY' →'HELLO' (attempt7)2.Bruteforcing:9D611DC10AFA (Original:'SECRET'withkey'ABC')SUCCESS!Key'ABC' →'SECRET' (attempt8)3.Bruteforcing:07B5ECD6 (Original:'TEST'withkey'123')SUCCESS!Key'123' →'TEST' (attempt9)4.Bruteforcing:B7C3C5 (Original:'RC4'withkey'X')SUCCESS!Key'X' →'RC4' (attempt4)5.Bruteforcing:C2D2A9DEB6 (Original:'BRUTE'withkey'PASS')SUCCESS!Key'PASS' →'BRUTE' (attempt10)6.Bruteforcing:B901B1D905B94619715026232C779904EE2A80F5B99DFDAA (Original:'TESTTESTTESTTESTTESTTEST'withkey'PEANUTBUTTER')NOKEY:Keynotfoundin18attempts7.Bruteforcing:4D2F0712D8C84303DF0E8AEEFA73ACC5CEFBE9CA9CE3B9EACF309A80674C65E984DE5730BC6BA6F7636FA654 (Original:'THE QUICK BROWN FOX JUMPED OVER THE LAZY DOG'withkey'QUICKBROWNFOX')NOKEY:Keynotfoundin18attempts8.Bruteforcing:7447591A0418A1EA1FABAAAC2FE8B73423BCA23F6FD72419ABB46A9FBF396B2CC7C72983CDFE31D35A5BF81B (Original:'THE QUICK BROWN FOX JUMPED OVER THE LAZY DOG'withkey'FOXFOXFOXFOX')NOKEY:Keynotfoundin18attempts9.Bruteforcing:C11C78918F720AA0A34130F8A8894E81EA0C2A3EAD9A7F2F8504E094617CB50D3D7A1698606D38BDB2C8EB65 (Original:'THE QUICK BROWN FOX JUMPED OVER THE LAZY DOG'withkey'F')NOKEY:Keynotfoundin18attempts10.Bruteforcing:C128B50796E637D857A4B7C9BE18967F566530651DE0D0008151C5E0C2AAB12207559CB8F9F93AF3275B (Original:'THIS is a LONGER PHRASE with mixed letters'withkey'KEYKEYKEYKEYKEY')SUCCESS!Key'KEY' →'THIS is a LONGER PHRASE with mixed letters' (attempt7)11.Bruteforcing:F01C043F1FE9CC68EAEA4C50DECBE16AA85C79D44C0DC1A93EF1CA16AFAE863D820D6036690A532CD666 (Original:'THIS is a LONGER PHRASE with mixed letters'withkey'AMOREDIFFICULTKEY')NOKEY:Keynotfoundin18attempts
Decryption (short printout),klein_demo.py:
NOTE: everything is compared to the ground truth value of the key byte to make this readable. Pay close attention to theappears X/Y times. That is relative to the total samples.
This algorithm works on VERY SUBTLE differences. Below shows the occurrence of the TARGET value in the location. For the top example, K appeared in position 0 only 391 times out of 100k. That's only 0.391 percent. For very small keys, there really wasn't a statistically noticeable difference.
Analyzingkeystreamposition0:Key[0]=0x4B ('K')appears391/100000times (prob:0.0039,bias:1.00x)Key[1]=0x45 ('E')appears196/100000times (prob:0.0020,bias:0.50x)Key[2]=0x59 ('Y')appears488/100000times (prob:0.0049,bias:1.25x)Analyzingkeystreamposition1:Key[0]=0x4B ('K')appears195/100000times (prob:0.0019,bias:0.50x)Analyzingkeystreamposition2:Key[0]=0x4B ('K')appears195/100000times (prob:0.0019,bias:0.50x)Key[1]=0x45 ('E')appears194/100000times (prob:0.0019,bias:0.50x)Key[2]=0x59 ('Y')appears196/100000times (prob:0.0020,bias:0.50x)
However, with longer keys there were some values that began to stand out. That means that this is NOT perfectly random, and that there issomething that can be pulled out of this algorithm. 450k samples were run, and some threshold values may need to be tuned, but there are several statistically significant values.
The following is run over the first 16 bytes. Kline discovered that there was the strongest correlation in the first 16-32 bytes.
Analyzingkeystreamposition0:Key[0]=0x4C ('L')appears1760/450000times (prob:0.0039,bias:1.00x)Key[1]=0x4F ('O')appears1758/450000times (prob:0.0039,bias:1.00x)Key[2]=0x4E ('N')appears1758/450000times (prob:0.0039,bias:1.00x)Key[3]=0x47 ('G')appears880/450000times (prob:0.0020,bias:0.50x)Key[4]=0x50 ('P')appears440/450000times (prob:0.0010,bias:0.25x)Key[5]=0x41 ('A')appears440/450000times (prob:0.0010,bias:0.25x)Key[6]=0x53 ('S')appears879/450000times (prob:0.0020,bias:0.50x)Key[7]=0x53 ('S')appears879/450000times (prob:0.0020,bias:0.50x)Key[8]=0x57 ('W')appears440/450000times (prob:0.0010,bias:0.25x)Key[9]=0x4F ('O')appears1758/450000times (prob:0.0039,bias:1.00x)Key[10]=0x52 ('R')appears440/450000times (prob:0.0010,bias:0.25x)Key[11]=0x44 ('D')appears39257/450000times (prob:0.0872,bias:22.33x)# NOTE THIS VALUE!!Analyzingkeystreamposition3:Key[0]=0x4C ('L')appears1759/450000times (prob:0.0039,bias:1.00x)Key[1]=0x4F ('O')appears38819/450000times (prob:0.0863,bias:22.08x)Key[3]=0x47 ('G')appears439/450000times (prob:0.0010,bias:0.25x)Key[4]=0x50 ('P')appears439/450000times (prob:0.0010,bias:0.25x)Key[6]=0x53 ('S')appears2199/450000times (prob:0.0049,bias:1.25x)Key[7]=0x53 ('S')appears2199/450000times (prob:0.0049,bias:1.25x)Key[8]=0x57 ('W')appears440/450000times (prob:0.0010,bias:0.25x)Key[9]=0x4F ('O')appears38819/450000times (prob:0.0863,bias:22.08x)# AND THIS VALUE!Key[10]=0x52 ('R')appears440/450000times (prob:0.0010,bias:0.25x)Key[11]=0x44 ('D')appears1318/450000times (prob:0.0029,bias:0.75x)Analyzingkeystreamposition8:Key[1]=0x4F ('O')appears1318/450000times (prob:0.0029,bias:0.75x)Key[2]=0x4E ('N')appears1317/450000times (prob:0.0029,bias:0.75x)Key[3]=0x47 ('G')appears879/450000times (prob:0.0020,bias:0.50x)Key[4]=0x50 ('P')appears1317/450000times (prob:0.0029,bias:0.75x)Key[5]=0x41 ('A')appears879/450000times (prob:0.0020,bias:0.50x)Key[6]=0x53 ('S')appears1756/450000times (prob:0.0039,bias:1.00x)Key[7]=0x53 ('S')appears1756/450000times (prob:0.0039,bias:1.00x)Key[8]=0x57 ('W')appears57570/450000times (prob:0.1279,bias:32.75x)# LETTER NUMBER 3!Key[9]=0x4F ('O')appears1318/450000times (prob:0.0029,bias:0.75x)Key[10]=0x52 ('R')appears439/450000times (prob:0.0010,bias:0.25x)Key[11]=0x44 ('D')appears440/450000times (prob:0.0010,bias:0.25x)Analyzingkeystreamposition15:Key[0]=0x4C ('L')appears1317/450000times (prob:0.0029,bias:0.75x)Key[1]=0x4F ('O')appears56250/450000times (prob:0.1250,bias:32.00x)#HERE!Key[2]=0x4E ('N')appears440/450000times (prob:0.0010,bias:0.25x)Key[3]=0x47 ('G')appears440/450000times (prob:0.0010,bias:0.25x)Key[4]=0x50 ('P')appears880/450000times (prob:0.0020,bias:0.50x)Key[5]=0x41 ('A')appears1756/450000times (prob:0.0039,bias:1.00x)Key[6]=0x53 ('S')appears440/450000times (prob:0.0010,bias:0.25x)Key[7]=0x53 ('S')appears440/450000times (prob:0.0010,bias:0.25x)Key[8]=0x57 ('W')appears1756/450000times (prob:0.0039,bias:1.00x)Key[9]=0x4F ('O')appears56250/450000times (prob:0.1250,bias:32.00x)# AND HERE!Key[10]=0x52 ('R')appears879/450000times (prob:0.0020,bias:0.50x)Key[11]=0x44 ('D')appears1317/450000times (prob:0.0029,bias:0.75x)
Doing a second analysis for the first 32 bytes and increasing the number of samples from 450k to 500k showed:
Analyzingkeystreamposition0:Key[0]=0x4C ('L')appears1955/500000times (prob:0.0039,bias:1.00x)Key[1]=0x4F ('O')appears1952/500000times (prob:0.0039,bias:1.00x)Key[2]=0x4E ('N')appears1953/500000times (prob:0.0039,bias:1.00x)Key[3]=0x47 ('G')appears977/500000times (prob:0.0020,bias:0.50x)Key[4]=0x50 ('P')appears488/500000times (prob:0.0010,bias:0.25x)Key[5]=0x41 ('A')appears488/500000times (prob:0.0010,bias:0.25x)Key[6]=0x53 ('S')appears977/500000times (prob:0.0020,bias:0.50x)Key[7]=0x53 ('S')appears977/500000times (prob:0.0020,bias:0.50x)Key[8]=0x57 ('W')appears489/500000times (prob:0.0010,bias:0.25x)Key[9]=0x4F ('O')appears1952/500000times (prob:0.0039,bias:1.00x)Key[10]=0x52 ('R')appears488/500000times (prob:0.0010,bias:0.25x)Key[11]=0x44 ('D')appears43618/500000times (prob:0.0872,bias:22.33x)# 22x HIGHER!Analyzingkeystreamposition3:Key[0]=0x4C ('L')appears1955/500000times (prob:0.0039,bias:1.00x)Key[1]=0x4F ('O')appears43130/500000times (prob:0.0863,bias:22.08x)Key[3]=0x47 ('G')appears488/500000times (prob:0.0010,bias:0.25x)Key[4]=0x50 ('P')appears488/500000times (prob:0.0010,bias:0.25x)Key[6]=0x53 ('S')appears2443/500000times (prob:0.0049,bias:1.25x)Key[7]=0x53 ('S')appears2443/500000times (prob:0.0049,bias:1.25x)Key[8]=0x57 ('W')appears489/500000times (prob:0.0010,bias:0.25x)Key[9]=0x4F ('O')appears43130/500000times (prob:0.0863,bias:22.08x)# 22x HIGHER!Key[10]=0x52 ('R')appears489/500000times (prob:0.0010,bias:0.25x)Key[11]=0x44 ('D')appears1465/500000times (prob:0.0029,bias:0.75x)Analyzingkeystreamposition8:Key[1]=0x4F ('O')appears1465/500000times (prob:0.0029,bias:0.75x)Key[2]=0x4E ('N')appears1464/500000times (prob:0.0029,bias:0.75x)Key[3]=0x47 ('G')appears977/500000times (prob:0.0020,bias:0.50x)Key[4]=0x50 ('P')appears1464/500000times (prob:0.0029,bias:0.75x)Key[5]=0x41 ('A')appears977/500000times (prob:0.0020,bias:0.50x)Key[6]=0x53 ('S')appears1952/500000times (prob:0.0039,bias:1.00x)Key[7]=0x53 ('S')appears1952/500000times (prob:0.0039,bias:1.00x)Key[8]=0x57 ('W')appears63966/500000times (prob:0.1279,bias:32.75x)# 32x HIGHER!Key[9]=0x4F ('O')appears1465/500000times (prob:0.0029,bias:0.75x)Key[10]=0x52 ('R')appears488/500000times (prob:0.0010,bias:0.25x)Key[11]=0x44 ('D')appears489/500000times (prob:0.0010,bias:0.25x)]=0x4C ('L')appears976/500000times (prob:0.0020,bias:0.50x)Key[1]=0x4F ('O')appears976/500000times (prob:0.0020,bias:0.50x)Key[2]=0x4E ('N')appears488/500000times (prob:0.0010,bias:0.25x)Key[3]=0x47 ('G')appears3905/500000times (prob:0.0078,bias:2.00x)#<- that would be worth investigating, but is likely too lowKey[4]=0x50 ('P')appears1953/500000times (prob:0.0039,bias:1.00x)Key[5]=0x41 ('A')appears1465/500000times (prob:0.0029,bias:0.75x)Key[6]=0x53 ('S')appears1465/500000times (prob:0.0029,bias:0.75x)Key[7]=0x53 ('S')appears1465/500000times (prob:0.0029,bias:0.75x)Key[9]=0x4F ('O')appears976/500000times (prob:0.0020,bias:0.50x)Key[11]=0x44 ('D')appears976/500000times (prob:0.0020,bias:0.50x)Analyzingkeystreamposition23:Key[0]=0x4C ('L')appears976/500000times (prob:0.0020,bias:0.50x)Key[2]=0x4E ('N')appears977/500000times (prob:0.0020,bias:0.50x)Key[3]=0x47 ('G')appears977/500000times (prob:0.0020,bias:0.50x)Key[5]=0x41 ('A')appears977/500000times (prob:0.0020,bias:0.50x)Key[6]=0x53 ('S')appears1953/500000times (prob:0.0039,bias:1.00x)Key[7]=0x53 ('S')appears1953/500000times (prob:0.0039,bias:1.00x)Key[8]=0x57 ('W')appears42644/500000times (prob:0.0853,bias:21.83x)# 21x HIGHER!Key[11]=0x44 ('D')appears1465/500000times (prob:0.0029,bias:0.75x)Analyzingkeystreamposition24:Key[0]=0x4C ('L')appears488/500000times (prob:0.0010,bias:0.25x)Key[1]=0x4F ('O')appears976/500000times (prob:0.0020,bias:0.50x)Key[2]=0x4E ('N')appears1466/500000times (prob:0.0029,bias:0.75x)Key[3]=0x47 ('G')appears976/500000times (prob:0.0020,bias:0.50x)Key[4]=0x50 ('P')appears62500/500000times (prob:0.1250,bias:32.00x)#32x HIGHER!Key[5]=0x41 ('A')appears1464/500000times (prob:0.0029,bias:0.75x)Key[8]=0x57 ('W')appears42643/500000times (prob:0.0853,bias:21.83x)#21x HIGHER!Key[9]=0x4F ('O')appears976/500000times (prob:0.0020,bias:0.50x)Key[10]=0x52 ('R')appears1465/500000times (prob:0.0029,bias:0.75x)Key[11]=0x44 ('D')appears977/500000times (prob:0.0020,bias:0.50x)Analyzingkeystreamposition28:Key[0]=0x4C ('L')appears1464/500000times (prob:0.0029,bias:0.75x)Key[1]=0x4F ('O')appears1464/500000times (prob:0.0029,bias:0.75x)Key[2]=0x4E ('N')appears976/500000times (prob:0.0020,bias:0.50x)Key[3]=0x47 ('G')appears1467/500000times (prob:0.0029,bias:0.75x)Key[5]=0x41 ('A')appears976/500000times (prob:0.0020,bias:0.50x)Key[6]=0x53 ('S')appears977/500000times (prob:0.0020,bias:0.50x)Key[7]=0x53 ('S')appears977/500000times (prob:0.0020,bias:0.50x)Key[8]=0x57 ('W')appears42643/500000times (prob:0.0853,bias:21.83x)#21x HIGHER!Key[9]=0x4F ('O')appears1464/500000times (prob:0.0029,bias:0.75x)Key[10]=0x52 ('R')appears1954/500000times (prob:0.0039,bias:1.00x)Key[11]=0x44 ('D')appears976/500000times (prob:0.0020,bias:0.50x)Analyzingkeystreamposition30:Key[0]=0x4C ('L')appears1465/500000times (prob:0.0029,bias:0.75x)Key[1]=0x4F ('O')appears1465/500000times (prob:0.0029,bias:0.75x)Key[3]=0x47 ('G')appears1465/500000times (prob:0.0029,bias:0.75x)Key[4]=0x50 ('P')appears1954/500000times (prob:0.0039,bias:1.00x)Key[5]=0x41 ('A')appears977/500000times (prob:0.0020,bias:0.50x)Key[6]=0x53 ('S')appears42156/500000times (prob:0.0843,bias:21.58x)#21x HIGHER!Key[7]=0x53 ('S')appears42156/500000times (prob:0.0843,bias:21.58x)#21x HIGHER!Key[8]=0x57 ('W')appears976/500000times (prob:0.0020,bias:0.50x)Key[9]=0x4F ('O')appears1465/500000times (prob:0.0029,bias:0.75x)Key[10]=0x52 ('R')appears2930/500000times (prob:0.0059,bias:1.50x)Key[11]=0x44 ('D')appears2928/500000times (prob:0.0059,bias:1.50x)Analyzingkeystreamposition31:Key[0]=0x4C ('L')appears1465/500000times (prob:0.0029,bias:0.75x)Key[1]=0x4F ('O')appears978/500000times (prob:0.0020,bias:0.50x)Key[2]=0x4E ('N')appears4393/500000times (prob:0.0088,bias:2.25x)<-thatisworthlookingatalittlecloser,buttoolowindividuallyKey[3]=0x47 ('G')appears1464/500000times (prob:0.0029,bias:0.75x)Key[4]=0x50 ('P')appears488/500000times (prob:0.0010,bias:0.25x)Key[8]=0x57 ('W')appears977/500000times (prob:0.0020,bias:0.50x)Key[9]=0x4F ('O')appears978/500000times (prob:0.0020,bias:0.50x)Key[10]=0x52 ('R')appears2441/500000times (prob:0.0049,bias:1.25x)Key[11]=0x44 ('D')appears977/500000times (prob:0.0020,bias:0.50x)
So we start feeling pretty good about the following parts of the key:
- Key[1] = 0x4F ('O') appears 62500/500000 times (prob: 0.1250, bias: 32.00x) # 32x HIGHER!
- Key[4] = 0x50 ('P') appears 62500/500000 times (prob: 0.1250, bias: 32.00x) #32x HIGHER!
- Key[6] = 0x53 ('S') appears 42156/500000 times (prob: 0.0843, bias: 21.58x) #21x HIGHER!
- Key[7] = 0x53 ('S') appears 42156/500000 times (prob: 0.0843, bias: 21.58x) #21x HIGHER!
- Key[8] = 0x57 ('W') appears 63966/500000 times (prob: 0.1279, bias: 32.75x) # 32x HIGHER!, 21x HIGHER!, 21x HIGHER!, 21x HIGHER! (this many? This is W.)
- Key[9] = 0x4F ('O') appears 43130/500000 times (prob: 0.0863, bias: 22.08x) # 22x HIGHER!, 32x HIGHER!
- Key[11] = 0x44 ('D') appears 43618/500000 times (prob: 0.0872, bias: 22.33x) # 22x HIGHER!
KEY PROGRESS: ?O??P?SSWO?D
And we've got some suspicions of two positions:
- Key[2] = 0x4E ('N') appears 4393/500000 times (prob: 0.0088, bias: 2.25x) <- that is worth looking at a little closer, but too low individually
- Key[3] = 0x47 ('G') appears 3905/500000 times (prob: 0.0078, bias: 2.00x) #<- that would be worth investigating, but is likely too low
But that doesn't mean we've found our key! We're working from an inherently biased point of view because theklein_demo.py compares the results to the ground truth (our secret key). In a real situation, we would look at the statistical significance over that 16-32 bytes (or longer), and use that to choose characters with the highest probability. Those instances where 'O' is in position 9 43130 times out of 500000 (8.63%)? That is statistically highly significant, even if it doesn't happen every time. Those letters would be likely to be part of the key.
The situations where 'N' is in position 2 and 'G' is in position 3? Those may not be statistically significant at all. Mathematically, you would analyze what characters might be more significant and collect a few of those to try. Because if you have as much data as it takes to run a Klein attack, then you have enough data to test out a few keys and see if you've decrypted it.
However, also consider that if a key is generated by a person rather than a computer it's going to have some patterns. So for something that looks like "?O??P?SSWO?D", where the last part looks a lot like "PASSWORD"? You may be able to look at the key and guess.
- ChaCha20
encrypt.py- the encryption class, standardized input.decrypt.py- the brute force decryption class, standardized input.encrypt_test.py- an LLM generated test case for encryptiondecrypt_test.py- an LLM generated test case for decryption, shows highlights of the UNBROKEN algorithmalg_analysis.py- LLM generated techniques for analysis of methods that could be used to detect anomalies in this algorithm (DOES NOT BRUTE FORCE DECRYPT)
The ChaCha20 cipher has not been broken (unlike RC4), and is resilient against related-key attacks. However, it is a popular algorithm and has been included in this set as a demo to contrast with other stream ciphers. Interestingly, The ChaCha family of ciphers use both a Key and a Nonce. The Key can be reused, but the Nonce (remember this with "number used once") is used only once! This is part of what makes it strong against related-key attacks.
The decryption highlight below shows several steps for working the encryption process backwards (decryption_test.py), but it is not a brute force attack. ChaCha20 is a symmetrical algorithm, meaning that the encryption and decryption process are the same (That's due to the XOR usage!). Due to the use of both a KEY and a single-use NONCE, ChaCha 20 remains unbroken.
Encryption:
ChaCha20StateInformation:Key:'SECRET' (6chars)Nonce:'nonce123' (8chars)Counter:0Outputformat:HEXInitialized:False===TestingMessages==='HELLO' →050124EBD0'HELLO WORLD!' →050124EBD05543194917D4B7'THE QUICK BROWN FOX JUMPS OVER THE LAZY DOG' →190C2D87CE205D15507BD2C4195C4FDFBFC39A61DA088D44F72D7CD10593999D27322AA2766BDC25ED0BEF
Decryption Highlights:
---BasicShortMessage---Originalmessage:'HELLO WORLD'Messagelength:11charactersEncrypted:72BE1AF8C5FB7AC40C7401Ciphertextlength:22hexcharacters (11bytes)Usingbasetestcase:BasicShortMessage'HELLO WORLD'Correctparameters:key='TESTKEY',nonce='testnonce',counter=0---TestingWrongKey---Withwrongkey:'8A31BDEF5664FB892A11AC'❌Shouldproducegarbage (notoriginalmessage)---TestingWrongNonce---Withwrongnonce:'14B6B381BCFD98DDCCE7AA'❌Shouldproducegarbage (notoriginalmessage)---TestingWrongCounter---Withwrongcounter:'3C120D609C7FE1DFE20251'❌Shouldproducegarbage (notoriginalmessage)
A paid version of Claude AI (https://claude.ai) was used in this project as detailed below. To keep things consistent, no other AI tools were used.
Evaluate the viability of using an AI tool to generate examples & toy problems for demonstrations on this topic.
- Is it efficient?
- Is it accurate?
- Is it readable and easy to follow?
Given a template and limited instruction, can an AI tool be used to
- Does this make this topic more accessible to students?
- Does this provide more experimental opportunities?
- Could students use this tool to reasonably test their own ciphers with a similar format?
- At what algorithm complexity (or type of algorithm), does the AI tool usage conflict with goal 1?
Claude AI was provided the Ceasar Cipher encryption and brute force decryption algorithms as a template/starting point. I wrote the initial version of those algorithms and then asked Claude to improve on the structure and readability. It took several iterations to get a balance between extra features and the format that I wanted for modularity purposes (see the Pandas dataframe for importing algorithm specific variables for the encrypt class). The substitution ciphers were written prior to this exercise, though not in the current class structure.
The bulk of the
encryptanddecryptclasses were written first locally, and then the AI tool was used to:- Create some consistency between naming within a class, and across the different algorithms
- Add (and spell check) comments, though this took manual editing to add some information relating to the unit material this repo was developed for
- Make minor edits when the encryption and decryption algorithms were slow or did not appear to output correctly.
- The algorithms were overall correct, though the stream ciphers had some minor errors.
- Claude AI's preview/debug of algorithm steps where the visual representation is printed out were a vast improvement on mine.
Claude AI was used to generate the
encrypt_test.pyanddecrypt_test.pyclasses. I made very few edits to those (primarily to correct some factual errors or non-existent function calls)For comparison purposes, Claude AI was told to make a version of
transposition/block/decrypt.pyand corresponding test function where it could make changes, additions, and commentary to improve the accuracy of the brute force decryption.- This had an increased PASS rate of test cases, but upon closer inspection this is because specific words unique to the testcases were inserted into the dictionary by Claude AI.
- On the given test cases there was no noticeable improvement on the brute force algorithm in general.
Overall, an AI tool was useful, but it had a tendency to insert excessive commentary, remove key comments in the code about modification, and make edits to the code to falsely increase the pass rate of test cases. These algorithms are also very well known, so there were no issues with training data behind the LLM.
From a programming and editing perspective:
- The function renaming to be a common structure was appreciated. This made the process of checking that all functions were consistently named very fast. The code also looks cleaner
- Asking Claude AI to comment, or to increase the number of comments in the code I provided it was ultimately mixed. It added a lot of comments that were distracting from the actual implementation. This was rolled back.
- Comments provided on the
encrypt_test.pyfunctions as these are relatively self contained and don't need to be included in every use of the algorithms, these were largely left as-is.
- Comments provided on the
From a content perspective:
- Generating the test cases for encryption and decryption was overall a positive experience. The test cases are unique enough from my demonstrations that they can be released publicly and still demonstrate the encryption and decryption process. They also included display and analysis that I was not expecting.
- The commentary, when in the test files, was overall interesting and did explain individual algorithm steps fairly well
- Some of the code generation was just for algorithm explanation and previewing internal steps/process. This was useful for demonstration in this use case, but would be excessive in normal use.
Debug and preview
- Claude AI's printout of algorithm progress, and the visualization of the algorithms were better than mine, no competition. This was especially true with the
Rail Fenceandgridalgorithms that required some ASCII art.
- Claude AI's printout of algorithm progress, and the visualization of the algorithms were better than mine, no competition. This was especially true with the
Surprise code & comment changes
- Claude AI tended to change code even when instructed not to. Some of this was for readability, or to increase modularity. Other times it was additional to the initial algorithm.
- In many cases, Claude AI removed my comments completely or replaced them with function descriptions. While this is not an instant negative thing, it did notably remove algorithm discussion and some troubleshooting tips relevant to lesson materials.
- Some additions were overly specific to the test cases that Claude AI generated for the test scripts. While this increased the pass rate of the test cases, it did not actually improve the algorithm.
AI edits to falsely pass test cases
- Somewhat expected, Claude would make edits to the dictionaries in the decryption process (and sometimes the code structure itself) for the test cases to pass.
AI Generated Commentary
- (disclaimer: no attempt was made to instruct otherwise)
- Claude inserted a lot of commentary into the test cases for encryption and decryption, some of which was off topic.
- When fed multiple algorithms in the same chat, it would begin to compare them unprompted. This was not a bad thing, but discussion was intended to be reserved for outside the encryption and decryption process. When Claude was allowed to make modifications (See
transposition/block/decrypt_improved_test.py), it inserted a lot of commentary and tended to make modifications that did not apply to the current problem/topic, or code was modified to allow test cases to pass.
These are general references. As related tutorials and some demos become public, information will be added.
Types of Encryption:
Wikipedia, “Public-key cryptography,” Wikipedia, Jul. 19, 2019.https://en.wikipedia.org/wiki/Public-key_cryptography
- Has links to other pages of interest, and some history. Current (6/2025) images are also good.
pago, “‘Symmetric, Asymmetric, and Hashing: Exploring the Different Types of Cryptography,’” Medium, Mar. 21, 2023.https://pagorun.medium.com/symmetric-asymmetric-and-hashing-exploring-the-different-types-of-cryptography-c4b5b9590b44
ClickSSL, “What is Encryption? – A Detailed Guide,” ClickSSL, Feb. 11, 2024.https://www.clickssl.net/blog/what-is-encryption
- Explanation of different types of encryption, some examples for both.
R. Awati, “What is a Public Key and How Does it Work?,” SearchSecurity.https://www.techtarget.com/searchsecurity/definition/public-key
Wikipedia, “Public-key cryptography,” Wikipedia, Jul. 19, 2019.https://en.wikipedia.org/wiki/Public-key_cryptography
GeeksforGeeks, “Difference between Private key and Public key,” GeeksforGeeks, May 13, 2019.https://www.geeksforgeeks.org/computer-networks/difference-between-private-key-and-public-key/
GeeksforGeeks, “What is Hashing?,” GeeksforGeeks, Jun. 12, 2014.https://www.geeksforgeeks.org/dsa/what-is-hashing/ (accessed Jun. 25, 2025).
- This is an explanation of Hashing in terms of the process and as data storage. The process of generating a hash is covered, but not in terms of usage with passwords.
C. Crane, “What Is a Hash Function in Cryptography? A Beginner’s Guide,” Hashed Out by The SSL StoreTM, Jan. 25, 2021.https://www.thesslstore.com/blog/what-is-a-hash-function-in-cryptography-a-beginners-guide/
History, Cryptography, and Ciphers
J. Schneider, “The History of Cryptography | IBM,” Ibm.com, Jul. 17, 2024.https://www.ibm.com/think/topics/cryptography-history
- A sample of cryptography through history, includes some of IBM's ideas on quantum computing
H. Sidhpurwala, “A Brief History of Cryptography,”www.redhat.com, Jan. 12, 2023.https://www.redhat.com/en/blog/brief-history-cryptography
Wikipedia, “History of cryptography,” Wikipedia, Apr. 07, 2019.https://en.wikipedia.org/wiki/History_of_cryptography
- As always, not a primary source itself, but inlusdes a collection of interesting references and links to many, many interesting related topics
T. M. P. Reader, “The Clue to the Labyrinth: Francis Bacon and the Decryption of Nature,” The MIT Press Reader, Feb. 27, 2023.https://thereader.mitpress.mit.edu/the-clue-to-the-labyrinth-francis-bacon-and-the-decryption-of-nature/
GeeksforGeeks, “Baconian Cipher,” GeeksforGeeks, Jun. 27, 2017.https://www.geeksforgeeks.org/python/baconian-cipher/
- Includes code example
“Baconian Cipher - Francis Bacon Code AABAA - Online Decoder, Solver,”www.dcode.fr.https://www.dcode.fr/bacon-cipher
- Life demo encocde and decode from a website that has a large selection of ciphers, games, and cryptography facts
GeeksForGeeks, “Caesar Cipher in Cryptography,” GeeksforGeeks, Jun. 02, 2016.https://www.geeksforgeeks.org/caesar-cipher-in-cryptography/
- Good explanation, demonstration, and code example
“Mono-Alphabetic Substitution Cipher,” 101 Computing, Nov. 09, 2019.https://www.101computing.net/mono-alphabetic-substitution-cipher/
- Life demo website for testing monoalphabetic ciphers
“Monoalphabetic Substitution Cipher - Online Cryptogram Decoder, Solver,”www.dcode.fr.https://www.dcode.fr/monoalphabetic-substitution
- Life demo encocde and decode from a website that has a large selection of ciphers, games, and cryptography facts
GeeksforGeeks, “What is Monoalphabetic Cipher?,” GeeksforGeeks, May 07, 2024.https://www.geeksforgeeks.org/computer-networks/what-is-monoalphabetic-cipher/
- Also includes affine cipher definition
GeeksforGeeks, “Difference between Monoalphabetic Cipher and Polyalphabetic Cipher,” GeeksforGeeks, Jun. 08, 2020.https://www.geeksforgeeks.org/computer-networks/difference-between-monoalphabetic-cipher-and-polyalphabetic-cipher/
“Rail Fence Cipher,” Crypto Corner, 2017.https://crypto.interactive-maths.com/rail-fence-cipher.html
- Interactive encode and decode
“Rail Fence,” rumkin.com.https://rumkin.com/tools/cipher/rail-fence/
- Interactive encode and decode
“Rail Fence Cipher - Encryption and Decryption,” GeeksforGeeks, Jan. 20, 2017.https://www.geeksforgeeks.org/rail-fence-cipher-encryption-decryption/
- Good explanation, demonstration, and code example
“Polybius square cipher – Encrypt and decrypt online,” cryptii.https://cryptii.com/pipes/polybius-square
- Online encryption and decryption
“Polybius Square Cipher - GeeksforGeeks,” GeeksforGeeks, Feb. 18, 2018.https://www.geeksforgeeks.org/polybius-square-cipher/
- Good explanation, demonstration, and code example
Wikipedia, “Feistel cipher,” Wikipedia, Nov. 25, 2019.https://en.wikipedia.org/wiki/Feistel_cipher
- The block cipher used in this repo
GeeksforGeeks, “Feistel Cipher,” GeeksforGeeks, Mar. 02, 2020.https://www.geeksforgeeks.org/python/feistel-cipher/ (accessed Jun. 25, 2025).
“ADFGVX cipher,” Wikipedia, Feb. 24, 2022.https://en.wikipedia.org/wiki/ADFGVX_cipher
“ADFGVX Cipher - Decoder, Encoder, Solver, Translator,”www.dcode.fr.https://www.dcode.fr/adfgvx-cipher
- Online encryption and decryption
“ADFGVX Cipher,” Crypto Corner.https://crypto.interactive-maths.com/adfgvx-cipher.html
- Good explanation, demonstration, and code example. Links on website to other interesting ciphers
“Practical Cryptography,” Practicalcryptography.com, 2009.http://practicalcryptography.com/ciphers/adfgvx-cipher/
GeeksforGeeks, “RC4 Encryption Algorithm,” GeeksforGeeks, Mar. 23, 2018.https://www.geeksforgeeks.org/rc4-encryption-algorithm/
“RC4 Cipher - ArcFour - Online Decoder, Encryption,” Dcode.fr, 2025.https://www.dcode.fr/rc4-cipher
Wikipedia, “RC4,” Wikipedia, Dec. 31, 2019.https://en.wikipedia.org/wiki/RC4
“The ChaCha family of stream ciphers,” Cr.yp.to, 2024.https://cr.yp.to/chacha.html
Wikipedia, “Salsa20,” Wikipedia, Mar. 16, 2023.https://en.wikipedia.org/wiki/Salsa20
“Salsa20 — PyCryptodome 3.23.0 documentation,” Readthedocs.io, 2025.https://pycryptodome.readthedocs.io/en/latest/src/cipher/salsa20.html (accessed Jun. 25, 2025).
- Example implementation for generating and using Salsa20 from the Cipher library in Python
GeeksforGeeks, “Stream Ciphers,” GeeksforGeeks, Oct. 09, 2020.https://www.geeksforgeeks.org/computer-networks/stream-ciphers/
About
The public half of an educational materials demo sample
Topics
Resources
Uh oh!
There was an error while loading.Please reload this page.