Product Keys Based on the Advanced Encryption Standard (AES)

The Wayback Machine - https://web.archive.org/web/20090803002608/http://www.codeguru.com:80/cpp/cpp/algorithms/math/article.php/c12827/

Videos

Submit an Article

Discussion Forums

Resource Directory

Announcements

Book List

Book Reviews

List of Gurus

Codeguru Blog

Guest Book

Technology Jobs

About Us

FAQs

Site Map

RSS Feeds

All

VC++/C++

.NET/C#

VB

See more EarthWeb Network feeds


User ID:
Password:
Remember Me:

Forgot Password?
Not a member? Click here for more information and to register.

Become a Marketplace Partner

internet.commerce

Partners & Affiliates

Home >> Visual C++ / C++ >> C++ >> Algorithms & Formulas >> Mathematics

Product Keys Based on the Advanced Encryption Standard (AES)
A Compact Product Key System Based on AES and Crypto++
Rating:

Jeffrey Walton (view profile)
November 28, 2006

Environment: Microsoft Visual C++ 5.0, Microsoft Visual C++ 6.0, Microsoft Visual C++ 2003, VC++ 5.0, VC++ 6.0, WinNT, Win2000, WinXP, Win2003 Server

Go to page: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 Next

Introduction

(continued)

A popular method of product validation is using keys similar to VJJJBX-H2BBCC-68CF7F-2BXD4R-3XP7FB-JDVQBC. These compact keys can be derived using Symmetric Key Cryptosystems such as the Advanced Encryption Standard (AES).

Other Public Key Cryptosystems are available such as RSA. However, these systems generally produce larger keys (which the user will eventually have to enter into the program to unlock functionality). Smaller producing Cryptosystems exist, but it is the author's opinion that they are highly encumbered with patents. Quartz is one such example. It is a Public Key Encryption System that produces a smaller cipher text based on Hidden Field Equations (HFEs). The Quartz website is littered with phrases such as "must license" and "pay royalties".

This article will use AES (specified in FIPS 197) as the Cryptosystem, and Wei Dai's Crypto++ for AES operations. AES will produce compact keys with the additional benefit that the cryptosystem is not burdened with patent compliance. However, should a binary fall to Reverse Engineering, the key will become compromised (note that AES is a Symmetric Cipher - not an Asymmetric Cipher which has Public and Private keys).

The reader is also encouraged to investigate Signature Schemes (with Recovery) as an alternative method to producing Product Keys. An example is PSS-R, a Message Recovery Signature Scheme based on RSA. PSS-R is proposed in ANSI X9.31 (reopened by the ANSI X9F working group) and IEEE 1363. The reader should also visit Product Keys Based on Elliptic Curve Cryptography to familiarize themselves with basic concepts of Product Keys in the domain of Public Key Cryptography.

This article will discuss the following topics:

Advanced Encryption Standard
Compiling and Integrating Crypto++ into the Visual C++ Environment
AES Implementation in Crypto++
Base Encoding a Cipher Text String in Crypto++
Bulk Product Key Generation
Product Key Validation

This article is based on the Visual C++ 6.0 Environment in hopes that it reaches the largest audience.

Advanced Encryption Standard

Currently, there are three FIPS-approved symmetric encryption algorithms: AES, Triple DES, and Skipjack. The article presented uses AES or the Advanced Encryption Standard in CBC Mode. Note that DES (FIPS 46-3) was withdrawn in May 2005, and is no longer approved for Federal use.

AES (or Rijndeal - pronounced "Rhine dahl") is the work of Joan Daemen and Vincent Rijmen - hence the portmanteau Rijndael. AES is a 128 bit block cipher that accepts key lengths of 128, 192, and 256 bits. The required number of rounds (i.e., linear and non-linear transformations), depend on the key size. Below are the FIPS 197 conformant Key-Block-Round combinations.

Taking from FIPS 197:

For both its Cipher and Inverse Cipher, the AES algorithm uses a round function that is composed of four different byte-oriented transformations: 1) byte substitution using a substitution table (S-box), 2) shifting rows of the State array by different offsets, 3) mixing the data within each column of the State array, and 4) adding a Round Key to the State. These transformations (and their inverses) are described in Sections 5.1.1-5.1.4 and 5.3.1-5.3.4.

Compiling and Integrating Crypto++ into the Microsoft Visual C++ Environment

Please see the related article, Compiling and Integrating Crypto++ into the Microsoft Visual C++ Environment. This article is based upon basic assumptions presented in the previously mentioned article. It also addresses most problems encountered with projects from Command Line to MFC (Errors C1083, C1189, LNK1104, LNK2001, and LNK2005). Additionally, it provides some tips and other nicities for using the Crypto++ Library.

For those who are interested in other C++ Number Theoretic libraries, please see Peter Gutmann's Cryptlib or Victor Shoup's NTL.

About the Author
In the past, I have worked as an IT consultant for County Government (Anne Arundel County), the Nuclear Energy Institute, the Treasury Department, and Social Security Administration as a Network Engineer and System Administrator. Primary Administration experience includes Microsoft Windows and Novell Netware, with additional exposure and familiarity with Mac and Linux OSes. Previous to the US government, I was a programmer for a small business using Microsoft Visual Languages (Basic 5.0, 6.0, and C++ 5.0, 6.0) and Scripting Languages. An undergraduate degree (BS in Computer Science) was obtained from University of Maryland, Baltimore County. Graduate work includes a Masters of Science (Computer Science) from Johns Hopkins University (expected before 2009). Training and Certifications include Microsoft, Checkpoint, and Cisco.

Go to page: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 Next

Downloads

BaseExp.zip - Base Expansion Program

FIPS197.zip - FIPS 197

KeyAndIVGen.zip - AES Key and IV Generator

KeyGen.zip - AES Product Key Generator

KeyVal.zip - AES Product Key Validator

aestest1.zip - AES Sample 1

aestest2.zip - AES Sample 2

aestest3.zip - AES Sample 3

aestest4.zip - AES Sample 4

aestest5.zip - AES Sample 5

Tools:

Add www.codeguru.com to your favorites

Add www.codeguru.com to your browser search box

IE 7 |

Firefox 2.0 |

Firefox 1.5.x

Receive news via our XML/RSS feed

RATE THIS ARTICLE: Excellent Very Good Average Below Average Poor

(You must be signed in to rank an article. Not a member? Click here to register)

Latest Comments:

No Comments Posted.

Add a Comment:

Title:
Comment:
Pre-Formatted:	Check this if you want the text to display with the formatting as typed (good for source code)

(You must be signed in to comment on an article. Not a member? Click here to register)

WebMediaBrands Corporate Info

Legal Notices, Licensing, Reprints, Permissions, Privacy Policy.
Advertise | Newsletters | Shopping | E-mail Offers | Freelance Jobs

Solutions

Whitepapers and eBooks

Whitepaper: Introducing the Azure Services Platform
Whitepaper: Introduction to Microsoft .NET Services for Developers
Whitepaper: Securing Microsoft's Cloud Infrastructure
Internet.com eBook: Becoming a Better Project Manager
Microsoft Partner Portal: What Azure Means for Microsoft Partners

Internet.com eBook: Web Development Frameworks for Java
Internet.com eBook: Developing a Content Management System Strategy
Article: Ten Things IT Professionals Should Know About Windows 7
Article: New BlackBerry Enterprise Server Eases Administration for IT Pros
MORE WHITEPAPERS, EBOOKS, AND ARTICLES

Webcasts

Get Started with .NET Services

MORE WEBCASTS, PODCASTS, AND VIDEOS

Downloads and eKits

Amyuni: PDF & PDF/A Engine for .NET and ActiveX Apps
Red Gate Free Trial: SQL Toolbelt
Iron Speed Designer Application Generator

Download Award-Winning Red Gate SQL Backup Pro
MORE DOWNLOADS, EKITS, AND FREE TRIALS

Tutorials and Demos

Internet.com Hot List: Get the Inside Scoop on the Hottest IT and Developer Products

MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES

May	AUG	Sep
	03
2008	2009	2010