Decrypting a file that has been encrypted twice

Question

Decrypting a file that has been encrypted twice

2 Answers

Tomas Knopp · Answer 1 · 2016-01-14T12:11:00+0000

answered Jan 14, 2016 by Tomas Knopp (58.9k points)

Hi,

with Rebex Security this is possible. Just apply the Encrypt method once again to the output of the previously encrypted file. This is a code sample that encrypts the file with TwoFish and then encrypts the TwoFish's output with AES:

// encrypt file with TwoFish
var encryption = new FileEncryption();
encryption.EncryptionAlgorithm = FileEncryptionAlgorithm.TwofishCbc;
encryption.SetPassword("secret password for twofish");
encryption.Encrypt("file.txt", "file.txt.enc");

// encrypt the encrypted file with AES - second layer
encryption.EncryptionAlgorithm = FileEncryptionAlgorithm.AesCbc;
encryption.SetPassword("secret password for aes");
encryption.Encrypt("file.txt.enc", "file.txt.enc.enc");

This is working just fine for me.

commented Jan 14, 2016 by Kucuk (140 points)

commented Jan 14, 2016 by Tomas Knopp (58.9k points)
edited Jan 14, 2016 by Tomas Knopp

commented Jan 14, 2016 by Kucuk (140 points)

commented Jan 14, 2016 by Tomas Knopp (58.9k points)

commented Jan 14, 2016 by Kucuk (140 points)

I use the same password for both encryptions. Please see my code below:

Encryption:
// encrypt file with TwoFish
            var encryption = new FileEncryption();
            encryption.EncryptionAlgorithm = FileEncryptionAlgorithm.TwofishCbc;
            encryption.SetPassword("DitIsEenHeleLangeKeyDatGeheimIsVoorIedereen!");
            encryption.Encrypt("mydata.txt", "mydata.txt.enc");

            // encrypt the encrypted file with AES - second layer
            encryption.EncryptionAlgorithm = FileEncryptionAlgorithm.AesCbc;
            //encryption.SetPassword("secret password for aes");
            encryption.Encrypt("mydata.txt.enc", "mydata.txt.enc.enc");

Decryption:
var decryption = new FileEncryption();
            decryption.EncryptionAlgorithm = FileEncryptionAlgorithm.AesCbc;
            decryption.SetPassword("DitIsEenHeleLangeKeyDatGeheimIsVoorIedereen!");
            decryption.Decrypt("mydata.txt.enc.enc", "decrypted.txt.dec"); //<---- Exception is occured here

            decryption.EncryptionAlgorithm = FileEncryptionAlgorithm.TwofishCbc;
            //decryption.SetPassword("secret password for twofish");
            decryption.Decrypt("decrypted.txt.dec", "decrypted.txt");

commented Jan 14, 2016 by Tomas Knopp (58.9k points)
edited Jan 27, 2016 by Tomas Knopp

It looks as though you stumbled across a bug in Rebex Security - thanks for the code snippet! The problem is that the component forgets the already set password when the encryption algorithm is changed before encrypting for the second time. I am opening a case for this issue and will report here once we have a solution.

UPDATE:
a fix will be released soon as part of the next release of Rebex components, e.g. 2016 R1.1.

Before we fix this issue, please call encryption.SetPassword() method after you change to AesCbc. This way a correct password will be used for the second encrypting layer and you will be able to decrypt it with the expected password.

Here is the code that works:

string password = "DitIsEenHeleLangeKeyDatGeheimIsVoorIedereen!";

// encrypt file with TwoFish
var encryption = new FileEncryption();
encryption.EncryptionAlgorithm = FileEncryptionAlgorithm.TwofishCbc;
encryption.SetPassword(password);

encryption.Encrypt("mydata.txt", "mydata.txt.enc");

// encrypt the encrypted file with AES - second layer
encryption.EncryptionAlgorithm = FileEncryptionAlgorithm.AesCbc;
encryption.SetPassword(password); // please add this line as a workaround

encryption.Encrypt("mydata.txt.enc", "mydata.txt.enc.enc");

var decryption = new FileEncryption();
decryption.EncryptionAlgorithm = FileEncryptionAlgorithm.AesCbc;
decryption.SetPassword(password);
decryption.Decrypt("mydata.txt.enc.enc", "decrypted.txt.dec");

decryption.EncryptionAlgorithm = FileEncryptionAlgorithm.TwofishCbc;
decryption.Decrypt("decrypted.txt.dec", "decrypted.txt");

commented Jan 14, 2016 by Kucuk (140 points)

commented Jan 27, 2016 by Tomas Knopp (58.9k points)

commented Feb 15, 2016 by Tomas Knopp (58.9k points)

Kucuk · Answer 2 · 2016-01-19T12:18:40+0000

Can you see why the following code is not working?

Encrypting:
var file = "test.txt.plain";
            var password = "123";

            var cryptor = new FileEncryption { EncryptionAlgorithm = FileEncryptionAlgorithm.AesCbc };
            cryptor.SetPassword(password);
            cryptor.OverwriteExistingFile = true;
            cryptor.Encrypt(file, $"{file}.die");

            var cryptor2 = new FileEncryption { EncryptionAlgorithm = FileEncryptionAlgorithm.TwofishCbc };
            cryptor2.SetPassword(password);
            cryptor2.Encrypt($"{file}.die", file+".die2");

And then decrypting:
var password = "123";
            var file = "test.txt.plain";

            var cryptor = new FileEncryption
            {
                EncryptionAlgorithm = FileEncryptionAlgorithm.TwofishCbc,
                OverwriteExistingFile = true
            };
            cryptor.SetPassword(password);
            cryptor.Decrypt(file, $"{file}.dec"); //<-- EXCEPTION

            cryptor.EncryptionAlgorithm = FileEncryptionAlgorithm.AesCbc;
            cryptor.SetPassword(password);
            cryptor.Decrypt($"{file}.dec", file);

Decrypting a file that has been encrypted twice

Please log in or register to add a comment.

Please log in or register to answer this question.

2 Answers

Please log in or register to add a comment.

Please log in or register to add a comment.

Categories

Decrypting a file that has been encrypted twice

Please log in or register to add a comment.

Please log in or register to answer this question.

2 Answers

Please log in or register to add a comment.

Please log in or register to add a comment.

Related questions

Categories