Description
A misuse resistant symmetric encryption library designed to support
authenticated encryption of individual messages, encryption keys,
message streams, or large files using the AES-SIV (RFC 5297),
AES-PMAC-SIV, and STREAM constructions.
Miscreant is available for several programming languages, including
C#, Go, JavaScript, Python, Ruby, and Rust.
miscreant alternatives and similar packages
Based on the "Cryptography" category.
Alternatively, view miscreant alternatives based on common mentions on social networks and blogs.
-
-
Ockam
Orchestrate end-to-end encryption, cryptographic identities, mutual authentication, and authorization policies between distributed applications โ at massive scale. -
rust-crypto
A (mostly) pure-Rust implementation of various cryptographic algorithms. -
exonum
An extensible open-source framework for creating private/permissioned blockchain applications -
curve25519-dalek
A pure-Rust implementation of group operations on Ristretto and Curve25519 -
sodiumoxide
[DEPRECATED] Sodium Oxide: Fast cryptographic library for Rust (bindings to libsodium) -
ed25519-dalek
Fast and efficient ed25519 signing and verification in Rust. -
RustCrypto Elliptic Curves
Collection of pure Rust elliptic curve implementations: NIST P-224, P-256, P-384, P-521, secp256k1, SM2 -
RustCrypto
Authenticated Encryption with Associated Data Algorithms: high-level encryption ciphers -
orion
Usable, easy and safe pure-Rust crypto [Moved to: https://github.com/orion-rs/orion] -
rust-security-framework
Bindings to the macOS Security.framework -
recrypt
A set of cryptographic primitives for building a multi-hop Proxy Re-encryption scheme, known as Transform Encryption. -
-
Roughenough
A Roughtime secure time sync client and server written in Rust -
schannel-rs
Schannel API-bindings for rust (provides an interface for native SSL/TLS using windows APIs) -
rust-djangohashers
A Rust port of the password primitives used in Django Project. -
-
rustotpony
๐ด RusTOTPony โ CLI manager of one-time password generators aka Google Authenticator -
-
rncryptor-rs
Pure Rust implementation of the RNCryptor cryptographic format by Rob Napier
InfluxDB - Power Real-Time Data Analytics at Scale
* Code Quality Rankings and insights are calculated and provided by Lumnify.
They vary from L1 to L5 with "L5" being the highest.
Do you think we are missing an alternative of miscreant or a related project?
|
WorkOS - The modern identity platform for B2B SaaS
sponsored
workos.com
|
Popular Comparisons
-
miscreantvsrust-crypto
-
miscreantvsring
-
miscreantvsrust-security-framework
-
miscreantvsoctavo
-
miscreantvsorion
|
SaaSHub - Software Alternatives and Reviews
sponsored
www.saashub.com
|
README
The best crypto you've never heard of, brought to you by Phil Rogaway
A misuse resistant symmetric encryption library designed to support authenticated encryption of individual messages, encryption keys, message streams, or large files using the [AES-SIV] (RFC 5297), AES-PMAC-SIV, and STREAM constructions.
Miscreant is available for several programming languages, including C#, Go, JavaScript, Python, Ruby, and Rust.
What is Miscreant?
Miscreant is a set of interoperable libraries implemented in several languages providing a high-level API for misuse-resistant symmetric encryption. Additionally, it provides support for "online" [authenticated encryption] use cases such as streaming or incrementally encryption/decryption of large files.
The following algorithms are provided by Miscreant:
AES-SIV: an authenticated mode of AES which provides nonce reuse misuse resistance. Described in RFC 5297, it combines the [AES-CTR] (NIST SP 800-38A) mode of encryption with the [AES-CMAC](NIST SP 800-38B) function for integrity.
AES-PMAC-SIV: a fully parallelizable variant of AES-SIV which substitutes the AES-PMAC function for integrity, providing effectively identical security properties as the original construction, but much better performance on systems which provide parallel hardware implementations of AES, namely Intel/AMD CPUs.
STREAM: a construction which, when combined with AES-SIV or AES-PMAC-SIV, provides online/streaming authenticated encryption and defends against reordering and truncation attacks.
Cipher Comparison
Miscreant Ciphers
| Name | Authenticated | Misuse Resistance | x86 Speed | IoT Speedโ | Standardization |
|---|---|---|---|---|---|
| AES-SIV | ๐ | ๐ | ๐ | ๐ | RFC 5297 |
| AES-PMAC-SIV | ๐ | ๐ | ๐ | ๐ | None |
Other Constructions
| Name | Authenticated | Misuse Resistance | x86 Speed | IoT Speedโ | Standardization |
|---|---|---|---|---|---|
| AES-GCM-SIV | ๐ | ๐ | ๐ | ๐ | Forthcomingโก |
| AES-GCM | ๐ | ๐ | ๐ | ๐ | NIST SP 800-38D |
| AES-CCM | ๐ | ๐ | ๐ | ๐ | NIST SP 800-38C |
| AES-CBC | ๐ | ๐ | ๐ | ๐ | NIST SP 800-38A |
| AES-CTR | ๐ | ๐ | ๐ | ๐ | NIST SP 800-38A |
| ChaCha20+Poly1305 | ๐ | ๐ | ๐ | ๐ | RFC 7539 |
| XSalsa20+Poly1305 | ๐ | ๐ | ๐ | ๐ | None |
Legend
| Heart | Meaning |
|---|---|
| ๐ | Great |
| ๐ | Fine |
| ๐ | Bad |
โ Assumes hardware acceleration for the AES block cipher function
โก Work is underway in the IRTF CFRG to provide an informational RFC for AES-GCM-SIV. For more information, see draft-irtf-cfrg-gcmsiv. When standardization work around AES-GCM-SIV is complete, it will be considered for inclusion in this library.
Language Support
Miscreant libraries are available for the following languages:
| Language | Version |
|---|---|
| C# |  |
| Go | N/A |
| JavaScript |  |
| Python |  |
| Ruby |  |
| Rust |  |
Documentation
Please see the Miscreant Wiki for more detailed documentation and usage notes.
Related Projects
- XSTREAM: public-key cryptography built on Miscreant and the X25519 elliptic curve Diffie-Hellman function.
- [minc] (the MIscreaNt Cryptotool): a command-line encryption utility built on Miscreant and XSTREAM.
Help and Discussion
Have questions? Want to suggest a feature or change?
- Gitter: web-based chat about Miscreant
- Google Group: join via web or email ([email protected])
Code of Conduct
We abide by the Contributor Covenant and ask that you do as well.
For more information, please see CODE_OF_CONDUCT.md.
Key Rap
The paper describing AES-SIV, Deterministic Authenticated-Encryption: A Provable-Security Treatment of the Key-Wrap Problem contains this explanatory rap song at the end, which goes out to all the chronic IV misusing miscreants in the land:
Yo! Weโz gonnaโ take them keys anโ whatever you pleaze We gonnaโ wrap โem all up looks like some ranโom gup Make somethinโ gnarly and funky wonโt fool no half-wit junkie So the gameโs like AE but thereโs one major hitch No coins can be pitched thereโs no state to enrich the IVโs in a ditch dead drunk on cheap wine Now NIST and X9 and their friends at the fort suggest that you stick it in a six-layer torte S/MIME has a scheme thereโs even one more So many ways that itโs hard to keep score And maybe they work and maybe theyโre fine but I want some proofs for spendinโ my time After wrappinโ them keys gonnaโ help out some losers chronic IV abusers donโt read no directions risk a deadly infection If a rusty IVโs drippinโ into yoโ veins and ya never do manage to get it exchanged Then we got ya somethinโ and it comes at low cost When you screw up again not all โill be lost
Contributing
Bug reports and pull requests are welcome on GitHub at https://github.com/miscreant/miscreant
Copyright
Copyright (c) 2017-2018 The Miscreant Developers. Distributed under the MIT license. See LICENSE.txt for further details.
Some language-specific subprojects include sources from other authors with more specific licensing requirements, though all projects are MIT licensed. Please see the respective LICENSE.txt files in each project for more information.
*Note that all licence references and agreements mentioned in the miscreant README section above
are relevant to that project's source code only.