将列混合得到的数据,通过和轮密钥矩阵异或得到
要想得到异或后的数据,首先要对密钥进行拓展,接下来我们来看密钥拓展。
密钥拓展
密钥拓展分为两种:
1. 如果i不是4的倍数,那么第i列由如下等式确定: W[i] = W[i - 4]^W[i-1]
当i = 5,计算如下:
当i= 6, 计算如下:
2. 如果i是4的倍数,那么第i列由如下等式确定:W[i] = W[i - 4]^T(W[i-1])
2.1 我们首先要确定函数T(W[i - 1])的计算公式:函数T由3部分组成:字循环,字节代换和轮 常量异或。
2.1.1 字循环
将一个字中的4个字节循环左移1字节,即将输入字[b0, b1, b2,b3]变换为[b1, b2, b3, bo]
2.1.2 字节替换: 对字循环的结果使用S盒进行字节代换
2.1.3 轮常量异或:字节替换的值同轮常量Rcon[j]进行异或,其中j表示轮数
最后再和W[i - 4]异或
最终通过计算生成10轮密钥
#include <iostream>
/*
矩阵转换
1.old_data[]:将待转换的数据传入
2. new_data[4][4]:转换后的矩阵
*/
void matrix_exchange(unsigned char old_data[16], unsigned char new_data[4][4])
{
unsigned char i = 0;
for(i = 0; i < 16; i++)
{
new_data[i & 3][i >> 2] = old_data[i];//为了提高程序运行速度,使用位操作的方式
//new_data[i % 4][i / 4] = old_data[i];
}
//验证转换后的矩阵
#if 1
for(i = 0; i < 4; i++)
{
unsigned char j = 0;
for(j = 0; j < 4; j++)
{
printf("%d ", new_data[i][j]);
}
printf("\n");
}
#endif
}
/*
初始变换
将明文和秘钥进行异或,得到最终初始变换的数据
*/
void origin_change(unsigned char old_data[16], unsigned char old_key[16], unsigned char change_data[4][4])
{
unsigned char new_key[4][4] = {0};
unsigned char new_data[4][4] = {0};
unsigned char i = 0, j = 0;
printf("明文矩阵变换:\n");
matrix_exchange(old_data, new_data);
printf("\n");
printf("秘钥矩阵变换:\n");
matrix_exchange(old_key, new_key);
printf("\n");
printf("明文矩阵和秘钥矩阵异或之后的结果:\n");
for(i = 0; i < 4; i++)
{
for(j = 0; j < 4; j++)
{
change_data[i][j] = new_key[i][j] ^ new_data[i][j];
printf("%d ", change_data[i][j]);
}
printf("\n");
}
}
/*
字节替换
*/
unsigned char arr[16][16] =
{
0x63, 0x7c, 0x77, 0x7b, 0xf2, 0x6b, 0x6f, 0xc5, 0x30, 0x01, 0x67, 0x2b, 0xfe, 0xd7, 0xab, 0x76,
0xca, 0x82, 0xc9, 0x7d, 0xfa, 0x59, 0x47, 0xf0, 0xad, 0xd4, 0xa2, 0xaf, 0x9c, 0xa4, 0x72, 0xc0,
0xb7, 0xfd, 0x93, 0x26, 0x36, 0x3f, 0xf7, 0xcc, 0x34, 0xa5, 0xe5, 0xf1, 0x71, 0xd8, 0x31, 0x15,
0x04, 0xc7, 0x23, 0xc3, 0x18, 0x96, 0x05, 0x9a, 0x07, 0x12, 0x80, 0xe2, 0xeb, 0x27, 0xb2, 0x75,
0x09, 0x83, 0x2c, 0x1a, 0x1b, 0x6e, 0x5a, 0xa0, 0x52, 0x3b, 0xd6, 0xb3, 0x29, 0xe3, 0x2f, 0x84,
0x53, 0xd1, 0x00, 0xed, 0x20, 0xfc, 0xb1, 0x5b, 0x6a, 0xcb, 0xbe, 0x39, 0x4a, 0x4c, 0x58, 0xcf,
0xd0, 0xef, 0xaa, 0xfb, 0x43, 0x4d, 0x33, 0x85, 0x45, 0xf9, 0x02, 0x7f, 0x50, 0x3c, 0x9f, 0xa8,
0x51, 0xa3, 0x40, 0x8f, 0x92, 0x9d, 0x38, 0xf5, 0xbc, 0xb6, 0xda, 0x21, 0x10, 0xff, 0xf3, 0xd2,
0xcd, 0x0c, 0x13, 0xec, 0x5f, 0x97, 0x44, 0x17, 0xc4, 0xa7, 0x7e, 0x3d, 0x64, 0x5d, 0x19, 0x73,
0x60, 0x81, 0x4f, 0xdc, 0x22, 0x2a, 0x90, 0x88, 0x46, 0xee, 0xb8, 0x14, 0xde, 0x5e, 0x0b, 0xdb,
0xe0, 0x32, 0x3a, 0x0a, 0x49, 0x06, 0x24, 0x5c, 0xc2, 0xd3, 0xac, 0x62, 0x91, 0x95, 0xe4, 0x79,
0xe7, 0xc8, 0x37, 0x6d, 0x8d, 0xd5, 0x4e, 0xa9, 0x6c, 0x56, 0xf4, 0xea, 0x65, 0x7a, 0xae, 0x08,
0xba, 0x78, 0x25, 0x2e, 0x1c, 0xa6, 0xb4, 0xc6, 0xe8, 0xdd, 0x74, 0x1f, 0x4b, 0xbd, 0x8b, 0x8a,
0x70, 0x3e, 0xb5, 0x66, 0x48, 0x03, 0xf6, 0x0e, 0x61, 0x35, 0x57, 0xb9, 0x86, 0xc1, 0x1d, 0x9e,
0xe1, 0xf8, 0x98, 0x11, 0x69, 0xd9, 0x8e, 0x94, 0x9b, 0x1e, 0x87, 0xe9, 0xce, 0x55, 0x28, 0xdf,
0x8c, 0xa1, 0x89, 0x0d, 0xbf, 0xe6, 0x42, 0x68, 0x41, 0x99, 0x2d, 0x0f, 0xb0, 0x54, 0xbb, 0x16
};
void byte_change(unsigned char change_data[4][4], unsigned char byte_change_data[4][4])
{
unsigned char i = 0, j = 0;
printf("字节替换后的结果:\n");
for(i = 0; i < 4; i++)
{
for(j = 0; j <4; j++)
{
byte_change_data[i][j] = arr[change_data[i][j] >> 4][change_data[i][j] & 0x0f];
printf("%d ", byte_change_data[i][j]);
}
printf("\n");
}
}
/*
行移位
*/
void shitf_rows(unsigned char byte_change_data[4][4], unsigned char shitf_rows_data[4][4])
{
unsigned char i = 0, j = 0;
unsigned char temp = 0;
for(i = 0; i < 4; i++)
{
switch(i)
{
case 0:
shitf_rows_data[0][0] = byte_change_data[0][0];
shitf_rows_data[0][1] = byte_change_data[0][1];
shitf_rows_data[0][2] = byte_change_data[0][2];
shitf_rows_data[0][3] = byte_change_data[0][3];
break;
case 1:
shitf_rows_data[1][0] = byte_change_data[1][1];
shitf_rows_data[1][1] = byte_change_data[1][2];
shitf_rows_data[1][2] = byte_change_data[1][3];
shitf_rows_data[1][3] = byte_change_data[1][0];
break;
case 2:
shitf_rows_data[2][0] = byte_change_data[2][2];
shitf_rows_data[2][1] = byte_change_data[2][3];
shitf_rows_data[2][2] = byte_change_data[2][0];
shitf_rows_data[2][3] = byte_change_data[2][1];
break;
case 3:
shitf_rows_data[3][0] = byte_change_data[3][3];
shitf_rows_data[3][1] = byte_change_data[3][0];
shitf_rows_data[3][2] = byte_change_data[3][1];
shitf_rows_data[3][3] = byte_change_data[3][2];
break;
default:
break;
}
}
printf("行移位后的结果:\n");
for(i = 0; i < 4; i++)
{
for(j = 0; j <4; j++)
{
printf("%d ", shitf_rows_data[i][j]);
}
printf("\n");
}
}
/*
列混合
*/
const unsigned char mix_col_arr[4][4] =
{
2, 3, 1, 1,
1, 2, 3, 1,
1, 1, 2, 3,
3, 1, 1, 2
};
void mix_columns(unsigned char shitf_rows_data[4][4], unsigned char mix_columns_data[4][4])
{
unsigned char j = 0, i = 0;
//计算s'0,j
for(j = 0; j < 4; j++)
{
unsigned char item1 = 0;
unsigned char item2 = 0;
if(shitf_rows_data[0][j] >> 7)//2 * s0,j
{
item1 = (shitf_rows_data[0][j] << 1) ^ 0x1B; //a7 = 1, (a6a5a4a3a2a1a0)^ (00011011)
}
else
{
item1 = (shitf_rows_data[0][j] << 1); //a7 = 0, (a6a5a4a3a2a1a0)
}
if((shitf_rows_data[1][j] >> 7) == 1)//3* s1,j
{
item2 = ((shitf_rows_data[1][j] << 1) ^ 0x1B) ^ (shitf_rows_data[1][j]);
}
else
{
item2 = (shitf_rows_data[1][j] << 1) ^ (shitf_rows_data[1][j]);
}
mix_columns_data[0][j] = item1 ^ item2 ^ shitf_rows_data[2][j] ^ shitf_rows_data[3][j];
}
//计算s'1,j
for(j = 0; j < 4; j++)
{
unsigned char item2 = 0;
unsigned char item3 = 0;
if(shitf_rows_data[1][j] >> 7)//2 * s1,j
{
item2 = (shitf_rows_data[1][j] << 1) ^ 0x1B; //a7 = 1, (a6a5a4a3a2a1a0)^ (00011011)
}
else
{
item2 = (shitf_rows_data[1][j] << 1); //a7 = 0, (a6a5a4a3a2a1a0)
}
if((shitf_rows_data[2][j] >> 7) == 1)//3* s2,j
{
item3 = ((shitf_rows_data[2][j] << 1) ^ 0x1B) ^ (shitf_rows_data[2][j]);
}
else
{
item3 = (shitf_rows_data[2][j] << 1) ^ (shitf_rows_data[2][j]);
}
mix_columns_data[1][j] = shitf_rows_data[0][j] ^ item2 ^ item3 ^ shitf_rows_data[3][j];
}
//计算s'2,j
for(j = 0; j < 4; j++)
{
unsigned char item3 = 0;
unsigned char item4 = 0;
if(shitf_rows_data[2][j] >> 7)//2 * s2,j
{
item3 = (shitf_rows_data[2][j] << 1) ^ 0x1B; //a7 = 1, (a6a5a4a3a2a1a0)^ (00011011)
}
else
{
item3 = (shitf_rows_data[2][j] << 1); //a7 = 0, (a6a5a4a3a2a1a0)
}
if(shitf_rows_data[3][j] >> 7)//3* s3,j
{
item4 = ((shitf_rows_data[3][j] << 1) ^ 0x1B) ^ (shitf_rows_data[3][j]);
}
else
{
item4 = (shitf_rows_data[3][j] << 1) ^ (shitf_rows_data[3][j]);
}
mix_columns_data[2][j] = shitf_rows_data[0][j] ^ shitf_rows_data[1][j] ^ item3 ^ item4;
}
//计算s'3,j
for(j = 0; j < 4; j++)
{
unsigned char item1 = 0;
unsigned char item4 = 0;
if(shitf_rows_data[3][j] >> 7)//2 * s3,j
{
item4 = (shitf_rows_data[3][j] << 1) ^ 0x1B; //a7 = 1, (a6a5a4a3a2a1a0)^ (00011011)
}
else
{
item4 = (shitf_rows_data[3][j] << 1); //a7 = 0, (a6a5a4a3a2a1a0)
}
if(shitf_rows_data[0][j] >> 7)//3* s0,j
{
item1 = ((shitf_rows_data[0][j] << 1) ^ 0x1B) ^ (shitf_rows_data[0][j]);
}
else
{
item1 = (shitf_rows_data[0][j] << 1) ^ (shitf_rows_data[0][j]);
}
mix_columns_data[3][j] = item1 ^ shitf_rows_data[1][j] ^ shitf_rows_data[2][j] ^ item4;
}
printf("列混合:\n");
for(i = 0; i < 4; i++)
{
for(j = 0; j <4; j++)
{
printf("0x%x ", mix_columns_data[i][j]);
}
printf("\n");
}
}
/*
轮秘钥加
*/
//计算出10轮拓展的秘钥
unsigned char Rcon[4][10] =
{
1, 2, 4, 8, 0x10, 0x20, 0x40, 0x80, 0x1b, 0x36,
0, 0, 0, 0, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
0, 0, 0, 0, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
0, 0, 0, 0, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00
};
void calc_round_key(unsigned char old_key[4][4], unsigned char round_key[4][4], unsigned char round)//round 从0开始计算轮数
{
unsigned char i = 0, j = 0;
for(i = 0; i < 4; i++)
{
if(i == 0)
{
//字循环
round_key[0][0] = old_key[1][3];
round_key[1][0] = old_key[2][3];
round_key[2][0] = old_key[3][3];
round_key[3][0] = old_key[0][3];
//字节替换
round_key[0][0] = arr[round_key[0][0] >> 4][round_key[0][0] & 0x0f];
round_key[1][0] = arr[round_key[1][0] >> 4][round_key[1][0] & 0x0f];
round_key[2][0] = arr[round_key[2][0] >> 4][round_key[2][0] & 0x0f];
round_key[3][0] = arr[round_key[3][0] >> 4][round_key[3][0] & 0x0f];
//轮常量异或
round_key[0][0] ^= Rcon[0][round];
round_key[1][0] ^= Rcon[1][round];
round_key[2][0] ^= Rcon[2][round];
round_key[3][0] ^= Rcon[3][round];
//在和W[i - 4]异或
round_key[0][0] ^= old_key[0][0];
round_key[1][0] ^= old_key[1][0];
round_key[2][0] ^= old_key[2][0];
round_key[3][0] ^= old_key[3][0];
}
else
{
for(j = 0; j <4; j++)
{
round_key[j][i] = old_key[j][i] ^ round_key[j][i - 1];
}
}
}
printf("秘钥拓展:\n");
for(i = 0; i < 4; i++)
{
for(j = 0; j <4; j++)
{
printf("0x%x ", round_key[i][j]);
}
printf("\n");
}
}
int main()
{
unsigned char old_data[16] = {1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16}, i ,j;
unsigned char old_key[16] = {11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26};
unsigned char change_data[4][4] = {0};
unsigned char byte_change_data[4][4] = {0};
unsigned char shitf_rows_data[4][4]= {0};
/*
列混合数组,视频中给定的数组
*/
unsigned char old_mix_arr[4][4] =
{
0xd4, 0xe0, 0xb8, 0x1e,
0xbf, 0xb4, 0x41, 0x27,
0x5d, 0x52, 0x11, 0x98,
0x30, 0xae, 0xf1, 0xe5
};
unsigned char mix_arr[4][4];
/*
秘钥拓展
*/
unsigned char key_origin[4][4] =
{
0x2b, 0x28, 0xab, 0x09,
0x7e, 0xae, 0xf7, 0xcf,
0x15, 0xd2, 0x15, 0x4f,
0x16, 0xa6, 0x88, 0x3c
};
unsigned char round_key1[4][4] = {0};
unsigned char temp_round_key[4][4];
#if 0
origin_change(old_data, old_key, change_data);
printf("\n");
byte_change(change_data, byte_change_data);
printf("\n");
shitf_rows(byte_change_data, shitf_rows_data);
printf("\n");//列混合
mix_columns(old_mix_arr, mix_arr);
#endif
//十轮秘钥拓展,第二轮得到的第三列数据和视频有区别
printf("\n");//秘钥拓展
calc_round_key(key_origin, round_key1, 0);
for(i = 0; i < 4; i++)
{
for(j = 0; j <4; j++)
{
temp_round_key[i][j] = round_key1[i][j];
round_key1[i][j] = 0;
}
}
calc_round_key(temp_round_key, round_key1, 1);
for(i = 0; i < 4; i++)
{
for(j = 0; j <4; j++)
{
temp_round_key[i][j] = round_key1[i][j];
round_key1[i][j] = 0;
}
}
calc_round_key(temp_round_key, round_key1, 2);
for(i = 0; i < 4; i++)
{
for(j = 0; j <4; j++)
{
temp_round_key[i][j] = round_key1[i][j];
round_key1[i][j] = 0;
}
}
calc_round_key(temp_round_key, round_key1, 3);
for(i = 0; i < 4; i++)
{
for(j = 0; j <4; j++)
{
temp_round_key[i][j] = round_key1[i][j];
round_key1[i][j] = 0;
}
}
calc_round_key(temp_round_key, round_key1, 4);
for(i = 0; i < 4; i++)
{
for(j = 0; j <4; j++)
{
temp_round_key[i][j] = round_key1[i][j];
round_key1[i][j] = 0;
}
}
calc_round_key(temp_round_key, round_key1, 5);
for(i = 0; i < 4; i++)
{
for(j = 0; j <4; j++)
{
temp_round_key[i][j] = round_key1[i][j];
round_key1[i][j] = 0;
}
}
calc_round_key(temp_round_key, round_key1, 6);
for(i = 0; i < 4; i++)
{
for(j = 0; j <4; j++)
{
temp_round_key[i][j] = round_key1[i][j];
round_key1[i][j] = 0;
}
}
calc_round_key(temp_round_key, round_key1, 7);
for(i = 0; i < 4; i++)
{
for(j = 0; j <4; j++)
{
temp_round_key[i][j] = round_key1[i][j];
round_key1[i][j] = 0;
}
}
calc_round_key(temp_round_key, round_key1, 8);
for(i = 0; i < 4; i++)
{
for(j = 0; j <4; j++)
{
temp_round_key[i][j] = round_key1[i][j];
round_key1[i][j] = 0;
}
}
calc_round_key(temp_round_key, round_key1, 9);
while(1);
}