This is the first part of the STM32 Key series. For your convenience you can find other parts using the links below (or by guessing the address):
Part 1 — DES implementation
Part 2 — Chat application
Part 3 — ARP, IP, UDP
Part 4 — Server
Today we start a new series in which we will make an encryption key using STM32 microcontroller. Let’s begin.
Introduction
We assume that we want to communicate with someone in the same LAN and we would like to have our traffic completely encrypted. We get two identical STM32 microcontrollers to use them as an encryption keys — we stick one of them in our machine, our friend does the same with his own. Next, we send packet from our machine to STM, it encrypts it and sends to another STM which in turn decrypts it and delivers to friend application.
Since this is just an academic project (I was implementing it few years ago during my CS studies), we don’t want to over-engineer it so we will use DES as an encryption algorithm and we will only handle UDP traffic. Also, here and there we will hard-code some things just to make them easier but also (what’s more important) to not exceed the limit of source code allowed in free environment.
This is the idea, implementation will be a little different. We will have chat application operating in one of two modes: encryption and decryption. Encryption will take plaintext and send it to STM on port A. STM will encrypt the data and send it back from port B. Chat application in decryption mode will listen on port B and present received data in hex format. If we send anything from decryption chat, it will go to port B of STM, be decrypted there and sent back from port A. So we cant test STM on one machine.
I will not describe all the details since right now they are probably outdated. I will just focus on the core details of logic, not necessarily on the SPI communication and technical stuff.
DES
DES is simple enough to be implemented in small amount of code and yet not too naive. Do not use it in production anymore since it is not secure but in academic environment we might ignore this little obstacle. The code goes like this:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 |
#include <stdio.h> #include <stdlib.h> static unsigned char pc1[56] = { 57, 49, 41, 33, 25, 17, 9, //PC1 1, 58, 50, 42, 34, 26, 18, 10, 2, 59, 51, 43, 35, 27, 19, 11, 3, 60, 52, 44, 36, 63, 55, 47, 39, 31, 23, 15, 7, 62, 54, 46, 38, 30, 22, 14, 6, 61, 53, 45, 37, 29, 21, 13, 5, 28, 20, 12, 4}; static unsigned char pc2[48] = { 14, 17, 11, 24, 1, 5, //PC2 3, 28, 15, 6, 21, 10, 23, 19, 12, 4, 26, 8, 16, 7, 27, 20, 13, 2, 41, 52, 31, 37, 47, 55, 30, 40, 51, 45, 33, 48, 44, 49, 39, 56, 34, 53, 46, 42, 50, 36, 29, 32}; static unsigned char ip[64] = { 58, 50, 42, 34, 26, 18, 10, 2,//Init. Permutation 60, 52, 44, 36, 28, 20, 12, 4, 62, 54, 46, 38, 30, 22, 14, 6, 64, 56, 48, 40, 32, 24, 16, 8, 57, 49, 41, 33, 25, 17, 9, 1, 59, 51, 43, 35, 27, 19, 11, 3, 61, 53, 45, 37, 29, 21, 13, 5, 63, 55, 47, 39, 31, 23, 15, 7}; static unsigned char ep[48] = { 32, 1, 2, 3, 4, 5, //Exp. Permutation 4, 5, 6, 7, 8, 9, 8, 9, 10, 11, 12, 13, 12, 13, 14, 15, 16, 17, 16, 17, 18, 19, 20, 21, 20, 21, 22, 23, 24, 25, 24, 25, 26, 27, 28, 29, 28, 29, 30, 31, 32, 1}; static unsigned char s[8][4][16] = { { {14, 4, 13, 1, 2, 15, 11, 8, 3, 10, 6, 12, 5, 9, 0, 7,},//S1 {0, 15, 7, 4, 14, 2, 13, 1, 10, 6, 12, 11, 9, 5, 3, 8,}, {4, 1, 14, 8, 13, 6, 2, 11, 15, 12, 9, 7, 3, 10, 5, 0,}, {15, 12, 8, 2, 4, 9, 1, 7, 5, 11, 3, 14, 10, 0, 6, 13,},}, { {15, 1, 8, 14, 6, 11, 3, 4, 9, 7, 2, 13, 12, 0, 5, 10,},//S2 { 3, 13, 4, 7, 15, 2, 8, 14, 12, 0, 1, 10, 6, 9, 11, 5,}, { 0, 14, 7, 11, 10, 4, 13, 1, 5, 8, 12, 6, 9, 3, 2, 15,}, {13, 8, 10, 1, 3, 15, 4, 2, 11, 6, 7, 12, 0, 5, 14, 9,},}, { {10, 0, 9, 14, 6, 3, 15, 5, 1, 13, 12, 7, 11, 4, 2, 8,},//S3 {13, 7, 0, 9, 3, 4, 6, 10, 2, 8, 5, 14, 12, 11, 15, 1,}, {13, 6, 4, 9, 8, 15, 3, 0, 11, 1, 2, 12, 5, 10, 14, 7,}, { 1, 10, 13, 0, 6, 9, 8, 7, 4, 15, 14, 3, 11, 5, 2, 12,},}, { { 7, 13, 14, 3, 0, 6, 9, 10, 1, 2, 8, 5, 11, 12, 4, 15,},//S4 {13, 8, 11, 5, 6, 15, 0, 3, 4, 7, 2, 12, 1, 10, 14, 9,}, {10, 6, 9, 0, 12, 11, 7, 13, 15, 1, 3, 14, 5, 2, 8, 4,}, { 3, 15, 0, 6, 10, 1, 13, 8, 9, 4, 5, 11, 12, 7, 2, 14,},}, { { 2, 12, 4, 1, 7, 10, 11, 6, 8, 5, 3, 15, 13, 0, 14, 9,},//S5 {14, 11, 2, 12, 4, 7, 13, 1, 5, 0, 15, 10, 3, 9, 8, 6,}, { 4, 2, 1, 11, 10, 13, 7, 8, 15, 9, 12, 5, 6, 3, 0, 14,}, {11, 8, 12, 7, 1, 14, 2, 13, 6, 15, 0, 9, 10, 4, 5, 3,},}, { {12, 1, 10, 15, 9, 2, 6, 8, 0, 13, 3, 4, 14, 7, 5, 11,},//S6 {10, 15, 4, 2, 7, 12, 9, 5, 6, 1, 13, 14, 0, 11, 3, 8,}, { 9, 14, 15, 5, 2, 8, 12, 3, 7, 0, 4, 10, 1, 13, 11, 6,}, { 4, 3, 2, 12, 9, 5, 15, 10, 11, 14, 1, 7, 6, 0, 8, 13,},}, { { 4, 11, 2, 14, 15, 0, 8, 13, 3, 12, 9, 7, 5, 10, 6, 1,},//S7 {13, 0, 11, 7, 4, 9, 1, 10, 14, 3, 5, 12, 2, 15, 8, 6,}, { 1, 4, 11, 13, 12, 3, 7, 14, 10, 15, 6, 8, 0, 5, 9, 2,}, { 6, 11, 13, 8, 1, 4, 10, 7, 9, 5, 0, 15, 14, 2, 3, 12,},}, { {13, 2, 8, 4, 6, 15, 11, 1, 10, 9, 3, 14, 5, 0, 12, 7,},//S8 { 1, 15, 13, 8, 10, 3, 7, 4, 12, 5, 6, 11, 0, 14, 9, 2,}, { 7, 11, 4, 1, 9, 12, 14, 2, 0, 6, 10, 13, 15, 3, 5, 8,}, { 2, 1, 14, 7, 4, 10, 8, 13, 15, 12, 9, 0, 3, 5, 6, 11}}}; static unsigned char p[32] = { 16, 7, 20, 21, //Permutation 29, 12, 28, 17, 1, 15, 23, 26, 5, 18, 31, 10, 2, 8, 24, 14, 32, 27, 3, 9, 19, 13, 30, 6, 22, 11, 4, 25}; static unsigned char iip[64] = { 40, 8, 48, 16, 56, 24, 64, 32,//Inv. Permutation 39, 7, 47, 15, 55, 23, 63, 31, 38, 6, 46, 14, 54, 22, 62, 30, 37, 5, 45, 13, 53, 21, 61, 29, 36, 4, 44, 12, 52, 20, 60, 28, 35, 3, 43, 11, 51, 19, 59, 27, 34, 2, 42, 10, 50, 18, 58, 26, 33, 1, 41, 9, 49, 17, 57, 25}; unsigned long long transform(unsigned long long pln_txt, unsigned long long key, int ch){ unsigned long long k[16], cd = 0, temp = 0, des_out = 0, ep_out48 = 0; unsigned int l = 0, r = 0, c0 = 0, d0 = 0, sb_out32 = 0, p_out32 = 0; unsigned char sdata = 0, row = 0, col = 0; int j = 0, i = 0, round = 0; ////////////////////////Key Schedule//////////////////////////////////// for (j=27; j>=0;j--) //PC1 { c0 = c0 ^ (((key >> (64-pc1[(27-j)])) & 0x1) << j); d0 = d0 ^ (((key >> (64-pc1[(55-j)])) & 0x1) << j); } for (i=1; i<=16;i++) k[i-1] = 0; //initiallizing key array for (i=1; i<=16;i++) { if ((i==1) | (i==2) | (i==9) | (i==16)) { c0 = ((c0 << 1) | (c0 >> 27)) & 0x0FFFFFFF; d0 = ((d0 << 1) | (d0 >> 27)) & 0x0FFFFFFF; } else { c0 = ((c0 << 2) | (c0 >> 26)) & 0x0FFFFFFF; d0 = ((d0 << 2) | (d0 >> 26)) & 0x0FFFFFFF; } cd = 0; // initiallizing for new value cd = ((cd ^ c0) << 28) ^ d0; for (j=47; j>=0;j--) //PC2 k[i-1] = k[i-1] ^ (((cd >> (56-pc2[(47-j)])) & 0x1) << j); } ///////////////////////End Key Schedule//////////////////////////////////// ////////////////////////Initial Permutation//////////////////////////////// for (j=31; j>=0;j--) { l = l ^ (((pln_txt >> (64-ip[(31-j)])) & 0x1) << j); r = r ^ (((pln_txt >> (64-ip[(63-j)])) & 0x1) << j); } /////////////////////////// 16 Rounds /////////////////////////// for (round=0; round<16; round++) { /////////////////////Expansion Permutation///////////////// ep_out48 = 0; for (j=47; j>=0;j--) ep_out48 = ep_out48 ^ ((long long)((r >> (32-ep[(47-j)])) & 0x1) << j); ////////////////////End exp Perm////////////////////////// if (ch == 1) ep_out48 = ep_out48 ^ k[round]; //Round Key Xor for cipher if (ch == 2) ep_out48 = ep_out48 ^ k[15-round]; //Round Key Xor for decipher /////////////////////////S Box Reduction/////////////////// sb_out32 = 0; for (i=7; i>=0;i--) { row = 0; col = 0; sdata = 0; sdata = (ep_out48>>(i*6)) & 0x3F; //accessing 6 bits at a time starting from MSB row = row ^ (sdata & 0x1); row = row ^ (((sdata >> 5) & 0x1) << 1); col = (sdata >>1) & 0x0F; sb_out32= sb_out32 ^ ((int)(s[7-i][row][col] << (4*i))); } /////////////////////Permutation////////////////////////// p_out32 = 0; for (j=31; j>=0;j--) p_out32 = p_out32 ^ (((sb_out32 >> (32-p[(31-j)])) & 0x1) << j); p_out32 = p_out32 ^ l; //Xor with left half l = r; r = p_out32; } /////////////////////// End 16 Rounds ////////////////// temp = 0; temp = ((temp ^ r) << 32) ^ l; //32bit SWAP /////////////////////Inverse Initial Permutation////////////////////////// des_out = 0; for (j=63; j>=0;j--) des_out = des_out ^ (((temp >> (64-iip[(63-j)])) & 0x1) << j); return des_out; } int main(void) { unsigned long long ch, pln_txt, key; printf ("Please select from menu:\n"); printf ("1. Cipher\n"); printf ("2. Decipher\n"); printf ("Choice: "); scanf ("%d",&ch); printf ("Enter 64bit text in Hex : "); scanf ("%llx",&pln_txt); printf ("Enter 64bit Key in Hex : "); scanf ("%llx",&key); printf ("des_out = %llx \n", transform(pln_txt, key, ch)); return 0; } |
The application works in one of two modes, it either encrypts or decrypts data.
Summary
In next part we are going to write very simple chat application using Java, Swing and Netbeans. So old!