PureBasic Forums - English

also test if it might be an ascii vs. unicode string issue

could you use IncludeBinary("json.lua") in a DataSection, then point a string ptr to it?

Then you should modify the first sentence at Wikipedia's Salt page : "In cryptography, a salt is random data" ( not static , as you argue it is) You should also modify Salt re-use (static salt) which explains why your "static salt" is a " common mistake ". Please don't ...

this is very cool! excellent work

Can you please post the source code here?
For various reasons (mostly security) I don't like downloading from 3rd party websites, and Russian websites don't have a good reputation

I work with software registers at AES. I have no idea what this means or how it's applicable to this discussion, and none of your code works directly with software registers - there is no inline assembly code using registers? The static salt does nothing different than the seed at random. By your o...

After all, it's just a static add-on. But you're recommending it for professional use, as per the thread title, when it fails very basic cryptographic standards. Nobody else knows your static salt Yes they do - because you hard-coded it. You've given it to the attacker on a platter. And now they kn...

@Keya The AES version of the diffuser works exactly the same as the diffuser version without AES. Both versions pixelate 33% of the image content, so the image remains visible with both. Cool! Sorry I misunderstood. It's an interesting approach leaving the images visible to the developer, yet disto...

Saki btw what does BF stand for? been wondering for weeks lol

This is a static salt. Salts by definition are meant to be cryptographically secure random data, not static/hard-coded constants. The basic idea is that instead of having to guess or brute-force 1 challenge ("What is the password?"), an attacker would have to break 2 challenges ("Wha...

fixed$=StringFingerprint(password$+"%$(s4DäÖÄö", #PB_Cipher_SHA3)

???

I'm confused. You say the diffusor is about leaving the image somewhat viewable, but now youve added AES to it (which renders the image unviewable) - but you've already got an AES version - so can you elaborate what's the difference between the AES version and the AES diffusor version? Thankyou

Saki wrote: ↑Sat Jun 26, 2021 10:31 pm It is not a Caesar cypher.

Saki wrote:Caesar encryption is also an encryption.
It is usually sufficient to hide the images, as it is also written in the code above.

Saki wrote: ↑Sat Jun 26, 2021 10:25 pm32 bit is wrong.

That's what you seed Random() with - a function you acknowledge is deterministic.

Saki wrote: ↑Sat Jun 26, 2021 10:25 pm9 out of 10 users here will probably be satisfied with the variant without AES.

On the contrary, I think 9 out of 10 users here are smart enough to know that Caesar Cipher is not a secure cipher.

Saki, at the end of the day it's just a maximum of 32 bits of security (so in reality about 16 bits of security). You can say all you want about how difficult YOU might find it to break ("It requires very profound knowledge" -- it really DOESN'T), but it's trivial for both cryptanalysts as...