The symmetric-key block cipher encryption method known as DES, or Data Encryption Standard, was created by IBM in the 1970s and approved as a standard by the US government in 1977. It can be used for both data encryption and decryption. In numerous applications, such as secure communication and financial transactions, DES is frequently employed for data encryption.
- Using a 56-bit key, DES encrypts data in 64-bit blocks.
- The algorithm transforms the plaintext into ciphertext via a sequence of mathematical operations, including as substitution, permutation, and XOR.
- The encryption process repeats these mathematical procedures 16 times, creating a different subkey from the original key for each round.
Suppose we have a 64-bit plaintext message that we want to encrypt using DES. Let’s say our plaintext message is “Hello123” (in ASCII representation) and our 56-bit encryption key is “SecretKe”.
Key generation, During key generation, the algorithm expands and transforms the 56-bit encryption key into sixteen 48-bit subkeys, generating one for each encryption round. The derivation of each subkey from the original key is accomplished through a process known as key scheduling.
Initial Permutation (IP) The 64-bit plaintext message undergoes an initial permutation (IP) stage, which rearranges the bits according to a fixed permutation table.
Encryption Rounds The encryption process consists of 16 rounds, where each round performs a series of mathematical operations on the 64-bit data block using a different 48-bit subkey.
In each encryption round, the algorithm performs the following steps:
- Expand the 32-bit right half of the previous round’s data block to 48 bits using an expansion permutation table.
- XOR the expanded 48-bit data with the 48-bit subkey specific to the current round.
- Divide the XOR result into eight 6-bit blocks and substitute each block using eight S-Boxes, performing nonlinear substitutions based on their 6-bit inputs.
- Permute the results from the S-Boxes using a fixed permutation table.
- XOR the permuted 32-bit data with the left half of the previous round’s data block.
- Swap the results of the XOR operation, making the previous right half the new left half. Repeat this process for the specified number of rounds.
Final Permutation (FP) After completing the 16 encryption rounds, the resulting data undergoes a final permutation (FP) stage, which is the inverse of the initial permutation.
Ciphertext The final permutation generates the 64-bit ciphertext, which is the encrypted form of the original plaintext message.
In our case, the DES algorithm would represent the encrypted message as a 64-bit ciphertext. It’s important to note that this example provides a simplified explanation of the DES algorithm, intended for easy understanding.
Advantage & Disadvantage
The advantage of DES is that it is effective in terms of computation time and memory utilization and has a reasonably basic architecture.
However, it has several drawbacks, such as a 56-bit key length that is very short and leaves it open to brute force attacks. Because it encrypts data in fixed-size 64-bit blocks, it is not suitable for encrypting vast amounts of data.
In conclusion, organizations have extensively utilized the symmetric-key block cipher encryption technique known as DES (Data Encryption Standard) in applications such as secure communication and financial transactions for data encryption. However, the computer security community now considers DES as obsolete and has replaced it with more modern encryption systems like AES (Advanced Encryption Standard). This shift is due to the short key length of DES, which makes it vulnerable to brute force attacks. AES offers stronger security and more robust cryptographic features, making it the preferred choice for secure data encryption in contemporary applications.