Skip to content

A simple implementation of the CHACHA20 stream cipher and CHACHA20-POLY1305 AEAD

Notifications You must be signed in to change notification settings

thomasbarrett/chacha20

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Thomas BarrettThomas Barrett
Thomas Barrett
and
Thomas Barrett
May 11, 2022
0bf3e31 · May 11, 2022

History

9 Commits
May 3, 2022
May 3, 2022
May 3, 2022
Apr 6, 2022
May 11, 2022
Apr 7, 2022
Mar 28, 2022

Repository files navigation

Poly1305

The Poly1305 algorithm is a MAC (message authentication code) that acts as a digital signature between two parties with a shared secret. It is used by TLS 1.3 to sign encrypted data packets to ensure that they have not been modified by a malicious man-in-the-middle while in transit.

Given a 32-byte one-time key and an arbitrary length message, the Poly1305 algorithm generates a 16-byte "tag" (signature) for the message. The algorithm itself is actually pretty simple. Note that all operations should be performed using a constant time arithmetic libary to avoid leaking information about the key.

The specification for this MAC can be found here.

r = key[0:16] & 0x0ffffffc0ffffffc0ffffffc0fffffff
s = key[16:32]
p = 2^130 - 5
for 16-byte block b in message
    a = (a + b) * r % p
tag = a + s

About

A simple implementation of the CHACHA20 stream cipher and CHACHA20-POLY1305 AEAD

Resources

Stars

Watchers

Forks

Packages

No packages published