DES

Section: User Commands (1)
Updated: 24 March 1987
Index Return to Main Contents
 

NAME

des - DES file encryption  

SYNOPSIS

des -e|-d [-h] [-k key] [-b]  

DESCRIPTION

des is a filter that encrypts or decrypts standard input to standard output with the Data Encryption Standard (DES). Either -e (encrypt) or -d (decrypt) must be specified. If the key is not given on the command line with the -k option the command will prompt for it twice, suppressing echo and comparing the two responses to guard against mistyping. The -h flag controls how the key string is to be interpreted. Without the -h flag, the key is an ASCII string. Since DES ignores the low order bit of each key byte, the high order bit is set for odd parity, thus retaining the information contained in the low order bit. If the -h flag is set, the key string is interpreted as 16 hex/ASCII characters; the low order bit of each byte is again ignored as per the DES algorithm. This allows the use of any arbitrary 56-bit key, including bytes representing control characters that could not be typed if the -h option were not used.

By default, DES Cipher Block Chaining (CBC) mode is used, with an initial vector (IV) of all zeros; if the -b option is specified, Electronic Code Book (ECB) mode is used instead.

Except for the -h option, this command is compatible with the des command on the Sun Microsystems workstation.  

SEE ALSO

Sun Microsystems DES(1) manual page, which describes in detail how the length of the file is encoded in the last block of ciphertext.  

AUTHOR

Phil Karn, KA9Q


 

Index

NAME
SYNOPSIS
DESCRIPTION
SEE ALSO
AUTHOR

This document was created by man2html, using the manual pages.
Time: 00:03:09 GMT, February 16, 2023