Home Explore Help
Sign In
hexchills
/
VeraCrypt
mirror of https://github.com/veracrypt/VeraCrypt.git
Watch 1
Star 0
Fork 0
Files Issues 0 Wiki
Branch: master
Branches Tags
VeraCrypt
/
doc
/
html
/
Cascades.html

Cascades.html 8.6 KB
Permalink History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192 
  1. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
    2. 

  2.     "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
    3. 

  3. <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
    4. 

  4. <head>
    5. 

  5. <meta http-equiv="content-type" content="text/html; charset=utf-8" />
    6. 

  6. <title>VeraCrypt - Free Open source disk encryption with strong security for the Paranoid</title>
    7. 

  7. <meta name="description" content="VeraCrypt is free open-source disk encryption software for Windows, Mac OS X and Linux. In case an attacker forces you to reveal the password, VeraCrypt provides plausible deniability. In contrast to file encryption, data encryption performed by VeraCrypt is real-time (on-the-fly), automatic, transparent, needs very little memory, and does not involve temporary unencrypted files."/>
    8. 

  8. <meta name="keywords" content="encryption, security"/>
    9. 

  9. <link href="styles.css" rel="stylesheet" type="text/css" />
    10. 

  10. </head>
    11. 

  11. <body>
    12. 

  12. 

  13. <div>
    14. 

  14. <a href="Documentation.html"><img src="VeraCrypt128x128.png" alt="VeraCrypt"/></a>
    15. 

  15. </div>
    16. 

  16. 

  17. <div id="menu">
    18. 

  18. 	<ul>
    19. 

  19. 	  <li><a href="Home.html">Home</a></li>
    20. 

  20. 	  <li><a href="/code/">Source Code</a></li>
    21. 

  21. 	  <li><a href="Downloads.html">Downloads</a></li>
    22. 

  22. 	  <li><a class="active" href="Documentation.html">Documentation</a></li>
    23. 

  23. 	  <li><a href="Donation.html">Donate</a></li>
    24. 

  24. 	  <li><a href="https://sourceforge.net/p/veracrypt/discussion/" target="_blank">Forums</a></li>
    25. 

  25. 	</ul>
    26. 

  26. </div>
    27. 

  27. 

  28. <div>
    29. 

  29. <p>
    30. 

  30. <a href="Documentation.html">Documentation</a>
    31. 

  31. <img src="arrow_right.gif" alt=">>" style="margin-top: 5px">
    32. 

  32. <a href="Encryption%20Algorithms.html">Encryption Algorithms</a>
    33. 

  33. <img src="arrow_right.gif" alt=">>" style="margin-top: 5px">
    34. 

  34. <a href="Cascades.html">Cascades of ciphers</a>
    35. 

  35. </p></div>
    36. 

  36. 

  37. <div class="wikidoc">
    38. 

  38. <h1>Cascades of ciphers</h1>
    39. 

  39. <p>&nbsp;</p>
    40. 

  40. <h2>AES-Twofish</h2>
    41. 

  41. <p>Two ciphers in a cascade [15, 16] operating in XTS mode (see the section <a href="Modes%20of%20Operation.html">
    42. 

  42. <em>Modes of Operation</em></a>). Each 128-bit block is first encrypted with Twofish (256-bit key) in XTS mode and then with AES (256-bit key) in XTS mode. Each of the cascaded ciphers uses its own key. All encryption keys are mutually independent (note that
    43. 

  43.  header keys are independent too, even though they are derived from a single password &ndash; see
    44. 

  44. <a href="Header Key Derivation.html"><em>Header Key Derivation, Salt, and Iteration Count</em></a>). See above for information on the individual cascaded ciphers.</p>
    45. 

  45. <h2>AES-Twofish-Serpent</h2>
    46. 

  46. <p>Three ciphers in a cascade [15, 16] operating in XTS mode (see the section <a href="Modes%20of%20Operation.html">
    47. 

  47. <em>Modes of Operation</em></a>). Each 128-bit block is first encrypted with Serpent (256-bit key) in XTS mode, then with Twofish (256-bit key) in XTS mode, and finally with AES (256-bit key) in XTS mode. Each of the cascaded ciphers uses its own key. All encryption
    48. 

  48.  keys are mutually independent (note that header keys are independent too, even though they are derived from a single password &ndash; see the section
    49. 

  49. <a href="Header Key Derivation.html"><em>Header Key Derivation, Salt, and Iteration Count</em></a>). See above for information on the individual cascaded ciphers.</p>
    50. 

  50. <h2>Camellia-Kuznyechik</h2>
    51. 

  51. <p>Two ciphers in a cascade [15, 16] operating in XTS mode (see the section <a href="Modes%20of%20Operation.html">
    52. 

  52. <em>Modes of Operation</em></a>). Each 128-bit block is first encrypted with Kuznyechik (256-bit key) in XTS mode and then with Camellia (256-bit key) in XTS mode. Each of the cascaded ciphers uses its own key. All encryption keys are mutually independent (note that
    53. 

  53.  header keys are independent too, even though they are derived from a single password &ndash; see the section
    54. 

  54. <a href="Header Key Derivation.html"><em>Header Key Derivation, Salt, and Iteration Count</em></a>). See above for information on the individual cascaded ciphers.</p>
    55. 

  55. <h2>Camellia-Serpent</h2>
    56. 

  56. <p>Two ciphers in a cascade [15, 16] operating in XTS mode (see the section <a href="Modes%20of%20Operation.html">
    57. 

  57. <em>Modes of Operation</em></a>). Each 128-bit block is first encrypted with Serpent (256-bit key) in XTS mode and then with Camellia (256-bit key) in XTS mode. Each of the cascaded ciphers uses its own key. All encryption keys are mutually independent (note that
    58. 

  58.  header keys are independent too, even though they are derived from a single password &ndash; see the section
    59. 

  59. <a href="Header Key Derivation.html"><em>Header Key Derivation, Salt, and Iteration Count</em></a>). See above for information on the individual cascaded ciphers.</p>
    60. 

  60. <h2>Kuznyechik-AES</h2>
    61. 

  61. <p>Two ciphers in a cascade [15, 16] operating in XTS mode (see the section <a href="Modes%20of%20Operation.html">
    62. 

  62. <em>Modes of Operation</em></a>). Each 128-bit block is first encrypted with AES (256-bit key) in XTS mode and then with Kuznyechik (256-bit key) in XTS mode. Each of the cascaded ciphers uses its own key. All encryption keys are mutually independent (note that
    63. 

  63.  header keys are independent too, even though they are derived from a single password &ndash; see the section
    64. 

  64. <a href="Header Key Derivation.html"><em>Header Key Derivation, Salt, and Iteration Count</em></a>). See above for information on the individual cascaded ciphers.</p>
    65. 

  65. <h2>Kuznyechik-Serpent-Camellia</h2>
    66. 

  66. <p>Three ciphers in a cascade [15, 16] operating in XTS mode (see the section <a href="Modes%20of%20Operation.html">
    67. 

  67. <em>Modes of Operation</em></a>). Each 128-bit block is first encrypted with Camellia (256-bit key) in XTS mode, then with Serpent (256- bit key) in XTS mode, and finally with Kuznyechik (256-bit key) in XTS mode. Each of the cascaded ciphers uses its own key. All
    68. 

  68.  encryption keys are mutually independent (note that header keys are independent too, even though they are derived from a single password &ndash; see the section
    69. 

  69. <a href="Header Key Derivation.html"><em>Header Key Derivation, Salt, and Iteration Count</em></a>). See above for information on the individual cascaded ciphers.</p>
    70. 

  70. <h2>Kuznyechik-Twofish</h2>
    71. 

  71. <p>Two ciphers in a cascade [15, 16] operating in XTS mode (see the section <a href="Modes%20of%20Operation.html">
    72. 

  72. <em>Modes of Operation</em></a>). Each 128-bit block is first encrypted with Twofish (256-bit key) in XTS mode and then with Kuznyechik (256-bit key) in XTS mode. Each of the cascaded ciphers uses its own key. All encryption keys are mutually independent (note that
    73. 

  73.  header keys are independent too, even though they are derived from a single password &ndash; see the section
    74. 

  74. <a href="Header Key Derivation.html"><em>Header Key Derivation, Salt, and Iteration Count</em></a>). See above for information on the individual cascaded ciphers.</p>
    75. 

  75. <h2>Serpent-AES</h2>
    76. 

  76. <p>Two ciphers in a cascade [15, 16] operating in XTS mode (see the section <a href="Modes%20of%20Operation.html">
    77. 

  77. <em>Modes of Operation</em></a>). Each 128-bit block is first encrypted with AES (256-bit key) in XTS mode and then with Serpent (256-bit key) in XTS mode. Each of the cascaded ciphers uses its own key. All encryption keys are mutually independent (note that
    78. 

  78.  header keys are independent too, even though they are derived from a single password &ndash; see the section
    79. 

  79. <a href="Header Key Derivation.html"><em>Header Key Derivation, Salt, and Iteration Count</em></a>). See above for information on the individual cascaded ciphers.</p>
    80. 

  80. <h2>Serpent-Twofish-AES</h2>
    81. 

  81. <p>Three ciphers in a cascade [15, 16] operating in XTS mode (see the section <a href="Modes%20of%20Operation.html">
    82. 

  82. <em>Modes of Operation</em></a>). Each 128-bit block is first encrypted with AES (256-bit key) in XTS mode, then with Twofish (256- bit key) in XTS mode, and finally with Serpent (256-bit key) in XTS mode. Each of the cascaded ciphers uses its own key. All
    83. 

  83.  encryption keys are mutually independent (note that header keys are independent too, even though they are derived from a single password &ndash; see the section
    84. 

  84. <a href="Header Key Derivation.html"><em>Header Key Derivation, Salt, and Iteration Count</em></a>). See above for information on the individual cascaded ciphers.</p>
    85. 

  85. <h2>Twofish-Serpent</h2>
    86. 

  86. <p>Two ciphers in a cascade [15, 16] operating in XTS mode (see the section <a href="Modes%20of%20Operation.html">
    87. 

  87. <em>Modes of Operation</em></a>). Each 128-bit block is first encrypted with Serpent (256-bit key) in XTS mode and then with Twofish (256-bit key) in XTS mode. Each of the cascaded ciphers uses its own key. All encryption keys are mutually independent (note
    88. 

  88.  that header keys are independent too, even though they are derived from a single password &ndash; see the section
    89. 

  89. <a href="Header Key Derivation.html"><em>Header Key Derivation, Salt, and Iteration Count</em></a>). See above for information on the individual cascaded ciphers.</p>
    90. 

  90. </div>
    91. 

  91. </body></html>
    92. 

  92.