This repository contains a C implementation of the stream cipher algorithm ChaCha20.
It uses a 256-bit encryption key and a 96-bit nonce to ensure data confidentiality and prevent repetition attacks.
Internal functioning of the algorithm:
-
Uses a 512-bit internal state organized as a 4x4 matrix of 32-bit words:
- Constants: 4 predefined constant words ("expand 32-byte k").
- Key: 8 words derived from the 256-bit key.
- Counter: 1 word to keep track of the block number.
- Nonce: 3 words for unique encryption sessions.
-
Quarter-Round Function: The core operation mixes words in the matrix using addition, XOR, and bitwise rotation to ensure diffusion and randomness.
-
Rounds: The cipher performs 20 rounds (10 iterations of a double-round) to scramble the state thoroughly.
-
Keystream Generation: After processing the state, the result is used as a pseudorandom keystream. The plaintext is XOR-ed with this keystream to produce ciphertext.
The following resources were used throughout the development of this project:
-
Paper: Original research paper on ChaCha20 by Daniel J. Bernstein.
-
RFC 8439: Standardized specification of ChaCha20 and its use in internet protocols.
-
Algorithm Explanation: A detailed explanation of how the ChaCha20 algorithm works.
-
Algorithm Design: A guide to understanding the design principles of ChaCha20.
The compiled executable, chacha20, supports the following options for testing and usage:
- Run all available tests: Tests vectors (decryption and encryption), and clock cycle tests
./chacha20 --all-tests- Encrypt test vector N (where N is an from 1 to 5 for each test vector within the RFC 8439).
./chacha20 --enc-tv N- Decrypt test vector N (where N is an from 1 to 5).
./chacha20 --dec-tv N- Clock cycles tests N (where N is from 1 to 5 for each plaintext length per ECRYPT).
./chacha20 --clock-ct NEncrypt a custom input provided by the user.
./chacha20 --enc-ci- Decrypt a custom input provided by the user.
./chacha20 --dec-ciThis implementation of ChaCha20 has been optimized for performance and includes benchmarking scripts to measure its efficiency. The results are comparable to established benchmarks, such as those available at ECRYPT. To measure the cycles per byte, use the provided automation scripts:
Run the clock_cycles_tests.bat script:
clock_cycles_tests.batRun the clock_cycles_tests.sh script:
clock_cycles_tests.shThese scripts perform automated benchmarking of the ChaCha20 implementation, similar to how benchmarks are conducted for cryptographic algorithms at ECRYPT. The average and median results in cycles per byte are as follows:
| Plaintext Length | Average | Median |
|---|---|---|
| 8-bytes | 168.82 | 155.38 |
| 64-bytes | 21.27 | 20.99 |
| 576-bytes | 11.30 | 11.34 |
| 1536-bytes | 10.12 | 9.04 |
| 4096-bytes | 12.02 | 10.19 |