Menu

Tree [a0a11a] master /
 History

HTTPS access


File Date Author Commit
 doc 2011-07-25 Bill Cox Bill Cox [e03a6d] Got rid of warning in microcrypt
 minilzo 2011-07-25 Bill Cox Bill Cox [042648] Initial files from svn. Also, added CPU intens...
 README 2011-07-25 Bill Cox Bill Cox [e03a6d] Got rid of warning in microcrypt
 encrypt.c 2011-07-25 Bill Cox Bill Cox [042648] Initial files from svn. Also, added CPU intens...
 encrypt.h 2011-07-25 Bill Cox Bill Cox [b90852] Added DIFFICULTY definition which controls comp...
 makefile 2011-07-25 Bill Cox Bill Cox [042648] Initial files from svn. Also, added CPU intens...
 makerel 2011-07-25 Bill Cox Bill Cox [e03a6d] Got rid of warning in microcrypt
 microcrypt.c 2011-07-25 Bill Cox Bill Cox [a0a11a] Another warning fix
 postweb 2011-07-25 Bill Cox Bill Cox [042648] Initial files from svn. Also, added CPU intens...
 testARC4.c 2011-07-25 Bill Cox Bill Cox [042648] Initial files from svn. Also, added CPU intens...
 tinycrypt.c 2011-07-25 Bill Cox Bill Cox [b90852] Added DIFFICULTY definition which controls comp...

Read Me

TinyCrypt is a very simple and secure command line program for
encrypting/decrypting files with passwords.

For discussion about security of tinycrypt, see http://eprint.iacr.org/2002/067.

TinyCrypt was written by Bill Cox, and placed into the public domain.  Feel free
to use it without any copyright worries.  However, be sure to realize that
MiniLZO uses the GNU copyright!  See COPYING in the minilzo directory.

To build TinyCrypt, just un-tar and un-zip the tinycrypt archive, go to the
tinycrypt directory, and type:

    make

The three executables are tinycrypt, testARC4, and modcrypt.  TestARC4 just
verifies that the lower-level ARC4 ("alleged RC4") implementation works.
Tinycrypt compresses the file, and then applies the ARC4, after dropping much of
it's initial output.  This should be secure enough for commercial use.  It has
been used for several years now by some companies.

To use tinycrypt, type:

    tinycrypt file

It will ask you for your password twice, just to confirm the spelling, and then
create file.enc.  This file is a binary encrypted file.  The original plain-text
file is not deleted.

To decrypt a .enc file, just type:

    tinycrypt file.enc

Again, it will ask for a password, but only once.  It will create 'file' without
the '.enc' extension, but it will not delete the encrypted file.

TinyCrypt does the following to help be more secure than the original ARC4:

- Includes a nonce value of 20 bytes (from /dev/urandom)
- Discards a minimum of 1024 bytes of ARC4 output to eliminate all known
  non-brute-force attacks
- Continues discarding bytes for about a second, in order to make it more CPU
  intensive to decrypt the file.  This allows you to use shorter passwords.
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.