TinyCrypt Git
Brought to you by:
smilindog2000
Menu
▾
▴
Tree [a0a11a] master / History
Read Me
TinyCrypt is a very simple and secure command line program for
encrypting/decrypting files with passwords.
For discussion about security of tinycrypt, see http://eprint.iacr.org/2002/067.
TinyCrypt was written by Bill Cox, and placed into the public domain. Feel free
to use it without any copyright worries. However, be sure to realize that
MiniLZO uses the GNU copyright! See COPYING in the minilzo directory.
To build TinyCrypt, just un-tar and un-zip the tinycrypt archive, go to the
tinycrypt directory, and type:
make
The three executables are tinycrypt, testARC4, and modcrypt. TestARC4 just
verifies that the lower-level ARC4 ("alleged RC4") implementation works.
Tinycrypt compresses the file, and then applies the ARC4, after dropping much of
it's initial output. This should be secure enough for commercial use. It has
been used for several years now by some companies.
To use tinycrypt, type:
tinycrypt file
It will ask you for your password twice, just to confirm the spelling, and then
create file.enc. This file is a binary encrypted file. The original plain-text
file is not deleted.
To decrypt a .enc file, just type:
tinycrypt file.enc
Again, it will ask for a password, but only once. It will create 'file' without
the '.enc' extension, but it will not delete the encrypted file.
TinyCrypt does the following to help be more secure than the original ARC4:
- Includes a nonce value of 20 bytes (from /dev/urandom)
- Discards a minimum of 1024 bytes of ARC4 output to eliminate all known
non-brute-force attacks
- Continues discarding bytes for about a second, in order to make it more CPU
intensive to decrypt the file. This allows you to use shorter passwords.
