Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

cryptest(1) [debian man page]

cryptest(1)						      General Commands Manual						       cryptest(1)

NAME

       cryptest - Test Driver for Crypto++, a C++ Class Library of Cryptographic Primitives

SYNOPSIS

       cryptest [OPTION]

DESCRIPTION

       cryptest takes the following options

       g      generate an RSA key

       h      display usage information

       r      encrypt and decrypt a string using RSA

       rs privatekeyfile messagefile signaturefile
	      sign a file using RSA

       rv publickeyfile messagefile signaturefile
	      verify a signature of a file using RSA

       m file calculate MD5, SHA, and RIPEMD-160 message digests

       t      encrypt and decrypt a string using DES-EDE in CBC mode

       e|d input output
	      encrypt or decrypt a file

       ss <threshold> <number-of-shares> file
	      secret share a file (shares will be named file.000, file.001, etc)

       sr file share1 share2 [....]
	      reconstruct a secret-shared file (number of shares given must be equal to threshold)

       id <threshold> <number-of-shares> file
	      information disperse a file (shares will be named file.000, file.001, etc)

       ir file share1 share2 [....]
	      reconstruct an information-dispersed file (number of shares given must be equal to threshold)

       z <compression-level> input output
	      gzip a file

       u input output
	      gunzip a file

       ae input output
	      encrypt a file with AES in CTR mode

       e64 input output
	      base64 encode a file

       d64 input output
	      base64 decode a file

       e16 input output
	      hex encode a file

       d16 input output
	      hex decode a file

       ft source-port destination-host destination-port
	      forward a TCP connection

       fips   run the FIPS 140-2 sample application

       fips-rand
	      generate 100000 random files using FIPS Approved X.917 RNG

       mt input
	      run Maurer's randomness test on a file

       v      run validation tests

       V      display version number

       b [time for each benchmark in seconds] [frequency of CPU in gigahertz]
	      run benchmarks

       tv filename
	      run test vector file (available in TestVectors example subdirectory)

AUTHOR

       This  man  page	was created by Stephen Zander, Pierre Machard and Jens Peter Secher for the Debian distribution.  It is licenced under the
       same terms as the rest of the Crypto++ library, written by Wei Dai.

								       local							       cryptest(1)

Check Out this Related Man Page

ssss(1) 						      General Commands Manual							   ssss(1)

NAME

       ssss - Split and Combine Secrets using Shamir's Secret Sharing Scheme.

SYNOPSIS

       ssss-split -t threshold -n shares [-w token] [-s level] [-x] [-q] [-Q] [-D] [-v]

       ssss-combine -t threshold [-x] [-q] [-Q] [-D] [-v]

DESCRIPTION

       ssss  is an implementation of Shamir's Secret Sharing Scheme. The program suite does both: the generation of shares for a known secret, and
       the reconstruction of a secret using user-provided shares.

COMMANDS

       ssss-split: prompt the user for a secret and generate a set of corresponding shares.

       ssss-combine: read in a set of shares and reconstruct the secret.

OPTIONS

       -t threshold
	      Specify the number of shares necessary to reconstruct the secret.

       -n shares
	      Specify the number of shares to be generated.

       -w token
	      Text token to name shares in order to avoid confusion in case one utilizes secret sharing to protect  several  independent  secrets.
	      The generated shares are prefixed by these tokens.

       -s level
	      Enforce  the  scheme's  security	level  (in  bits). This option implies an upper bound for the length of the shared secret (shorter
	      secrets are padded). Only multiples of 8 in the range from 8 to 1024 are allowed. If this option is ommitted (or the value given	is
	      0) the security level is chosen automatically depending on the secret's length. The security level directly determines the length of
	      the shares.

       -x     Hex mode: use hexadecimal digits in place of ASCII characters for I/O. This is useful if one wants  to  protect  binary  data,  like
	      block cipher keys.

       -q     Quiet mode: disable all unnecessary output. Useful in scripts.

       -Q     Extra quiet mode: like -q, but also suppress warnings.

       -D     Disable the diffusion layer added in version 0.2. This option is needed when shares are combined that where generated with ssss ver-
	      sion 0.1.

       -v     Print version information.

EXAMPLE

       In case you want to protect your login password with a set of ten shares in such a way that any three of them can reconstruct the password,
       you simply run the command

       ssss-split -t 3 -n 10 -w passwd

       To reconstruct the password pass three of the generated shares (in any order) to

       ssss-combine -t 3

NOTES

       To  protect  a  secret  larger than 1024 bits a hybrid technique has to be applied: encrypt the secret with a block cipher and apply secret
       sharing to just the key. Among others openssl and gpg can do the encryption part:

       openssl bf -e < file.plain > file.encrypted

       gpg -c < file.plain > file.encrypted

SECURITY

       ssss tries to lock its virtual address space into RAM for privacy reasons. But this may fail  for  two  reasons:  either  the  current  uid
       doesn't	permit	page  locking, or the RLIMIT_MEMLOCK is set too low. After printing a warning message ssss will run even without obtaining
       the desired mlock.

AUTHOR

       This software (v0.5) was written in 2006 by B. Poettering (ssss AT point-at-infinity.org). Find the newest version of ssss on the project's
       homepage: http://point-at-infinity.org/ssss/.

FURTHER READING

       http://en.wikipedia.org/wiki/Secret_sharing

Manuals 							       User								   ssss(1)
Man Page