stego-uuid alternatives and similar packages
Based on the "Cryptography" category.
Alternatively, view stego-uuid alternatives based on common mentions on social networks and blogs.
-
-
merkle-tree
An implementation of a Merkle Tree and merkle tree proofs -
-
-
pedersen-commitment
An implementation of Pedersen commitment schemes -
arithmetic-circuits
Arithmetic circuits for zero knowledge proof systems -
-
-
galois-field
Finite field and algebraic extension field arithmetic -
-
-
-
cryptohash
efficient and practical cryptohashing in haskell. DEPRECATED in favor of cryptonite -
oblivious-transfer
Oblivious transfer for multiparty computation -
-
elliptic-curve
A polymorphic interface for elliptic curve operations -
cipher-aes
DEPRECATED - use cryptonite - a comprehensive fast AES implementation for haskell that supports aesni and advanced cryptographic modes. -
cipher-blowfish
DEPRECATED by cryptonite; A collection of cryptographic block and stream ciphers in haskell -
ed25519
Minimal ed25519 Haskell package, binding to the ref10 SUPERCOP implementation. -
crypto-api
Haskell generic interface (type classes) for cryptographic algorithms -
signable
Deterministic serialisation and signatures with proto-lens and protobuf-elixir support -
-
-
skein
Skein, a family of cryptographic hash functions. Includes Skein-MAC as well. -
-
galois-fft
Finite field polynomial arithmetic based on fast Fourier transforms -
qnap-decrypt
Decrypt files encrypted by the QNAP's Hybrid Backup Sync -
cryptohash-sha256
Fast, pure and practical SHA-256 implementation -
-
crypto-pubkey-types
Crypto Public Key algorithm generic types. -
crypto-pubkey
DEPRECATED - use cryptonite - Cryptographic public key related algorithms in haskell (RSA,DSA,DH,ElGamal) -
-
cipher-aes128
Based on cipher-aes, but using a crypto-api interface and providing resulting IVs for each mode -
-
cprng-aes
Crypto Pseudo Random Number Generator using AES in counter mode -
crypto-enigma
A Haskell Enigma machine simulator with rich display and machine state details.
Static code analysis for 29 languages.
* Code Quality Rankings and insights are calculated and provided by Lumnify.
They vary from L1 to L5 with "L5" being the highest.
Do you think we are missing an alternative of stego-uuid or a related project?
|
Access the most powerful time series database as a service
sponsored
www.influxdata.com
|
Popular Comparisons
-
stego-uuidvsed25519
-
stego-uuidvscryptohash-md5
-
blake3vsxxhash
-
secp256k1vsecdsa
-
secp256k1vsed25519
|
SaaSHub - Software Alternatives and Reviews
sponsored
www.saashub.com
|
README
stego-uuid
A generator and verifier for steganographic numbers that look random
The standard use of this package is to generate a 64-bit number and use this, along with a secret key, as input to the marking function.
Example:
secretHi = KeyHi64 12345 -- secret key hi 64 bits
secretLo = KeyLo64 67890 -- secret key low 64 bits
main :: IO ()
main = do
putStrLn "Is this marked?"
r <- randomIO :: IO Word64 -- get 64-bit random number
let x = mark secretHi secretLo r -- produce marked 128-bit UUID
print x
print (isMarked secretHi secretLo x) -- True
Security considerations
This is a poor man's MAC. We use SHA256 to generate the second half of the UUID from the 64-bit random looking input and the secret key. The small number of bits limits the security.
We will start getting collisions on the 64-bit random number after about 232 numbers are used. But this just means we will be providing the function with the same input, so the same output will be produced.
False Negatives
This is zero. If you produced the number with the mark function, this number will always be
detected with isMarked as long as you provide the correct key.
False positives
This is false detection. We worry about a UUID that was not generated using mark but is
detected as marked by isMarked. (A malicious adversary can always replay any UUIDs known as
marked. Thus, we will consider only new UUIDs.)
Assuming SHA256 is a perfect pseudo-random function, its truncated output, i.e. the last 64 bits of the UUID, does not leak any information about the secret key. Given a fixed secret key, for any 64-bit input (corresponding to the the first half of the UUID), there is a unique 64-bit output (corresponding to the second half of the UUID). There is only one such output per 64-bit input. So, the probability of finding such input from a random draw is 2-64. The adversary would have more than a 1/2 chance of finding it after 263 guesses.
Information leakage
The adversary can only know a UUID is marked if it is able to differentiate the output of truncated SHA256 from a pseudo-random function. I am unaware of any significant results in doing so. The key is 128-bits in length, so going through all possible values is currently unfeasible.