Topic: Adding AES encryption to VEDIT (1 of 7), Read 39 times Conf: VEDIT Sales and Info From: Ted Green Date: Saturday, February 09, 2008 12:53 PM I plan to add AES encryption to VEDIT very soon. I have already found and tested relatively simple C code which implements AES. My current plan is this: When you encrypt a file for the first time, it would add a header line like this: ////VEDIT AES encrypted - ON//// Then when VEDIT opens a file, it would look for the header line, and if found prompt for the password to decrypt the file. The header would then be changed to: ////VEDIT AES encrypted - OFF//// Then when VEDIT closes the file, it would notice the header and re-encrypt it before saving it to disk, again changing "OFF" to "ON". Notes: The first 4 chars of the header are arbitrary, they could be changed to the comment indicator for any language. There will be an option to save one password (in VEDIT encrypted form) in the vedit.ini file. I know - not real safe, but that is the user's choice. --------- This would be useful for creating files such as: * Lists of passwords for various accounts * Personal documents you want to keep safe for other eyes As you may know, AES encryption is considered very secure and is US government approved. A 128-bit key has never been cracked. It has been suggested that a 128-bit key *might* be crackable in "only" 2**120 permutation. Current networks for computers can crack 2**64 permutations, but 2**120 would take a billion years. Ted.

Topic: Adding AES encryption to VEDIT (2 of 7), Read 35 times Conf: VEDIT Sales and Info From: Pauli Lindgren Date: Monday, February 11, 2008 05:03 AM On 2/9/2008 12:53:24 PM, Ted Green wrote: >I plan to add AES encryption to VEDIT very soon. I have >already found and tested relatively simple C code which >implements AES. How about using Windows Cryptography API? Of course the services available depend on Windows version, but I think at least Windows 2000 already has what is needed. > >Then when VEDIT opens a file, it would look for the header >line, and if found prompt for the password to decrypt the >file. The header would then be changed to: > >////VEDIT AES encrypted - OFF//// I don't think it is a good idea to add anything in unencrypted file. This would not look nice and it would seriously limit the file types it can be used with. But perhaps it could be a configuration option. It would be better if Vedit could remember internally that the file was encrypted when it was opened. If the file is saved unencrypted, there is no need to automatically encrypt it next time. -- Pauli

Topic: Re: Adding AES encryption to VEDIT (3 of 7), Read 42 times Conf: VEDIT Sales and Info From: Ted Green Date: Monday, February 11, 2008 10:28 AM At 05:04 AM 2/11/2008, you wrote: >From: "Pauli Lindgren" >How about using Windows Cryptography API? >Of course the services available depend on Windows version, but I think at least Windows 2000 already has what is needed. 1. AES looks very easy to implement since there is public C source 2. I'm not sure Windows Cryptography is US gov approved and certified. Even if it is, many don't trust MS. 3. Windows Cryptography would not be available in a Linux version 4. Eventually I might want to add zip/unzip capability and AES is now the preferred encrypted for Zip. >I don't think it is a good idea to add anything in unencrypted file. This would not look nice and it would seriously limit the file types it can be used with. But perhaps it could be a configuration option. > >It would be better if Vedit could remember internally that the file was encrypted when it was opened. If the file is saved unencrypted, there is no need to automatically encrypt it next time. Good point. The encryption dialog box will have an option to add the header. Otherwise, when a file is opened, VEDIT cannot tell if it is a binary file or an encrypted file. The header will simply save a step when opening a common file. Ted.

Topic: Re: Adding AES encryption to VEDIT (4 of 7), Read 44 times Conf: VEDIT Sales and Info From: Pauli Lindgren Date: Tuesday, February 12, 2008 03:12 AM On 2/11/2008 10:28:23 AM, Ted Green wrote: > >Good point. The encryption dialog box will have an option >to add the header. >Otherwise, when a file is opened, VEDIT cannot tell if >it is a binary file or an encrypted file. The header >will simply save a step when opening a common file. There could always be a header in encrypted files (perhaps in encrypted form if you want to hide the fact that it is an encrypted file). However, the normal (un-encrypted) file should not have a header. If you have saved the file without encryption, you do not need the information that it has been encrypted earlier. While the file is open, Vedit can keep the information internally (just like the information of file name, modified flag etc.). -- Pauli

Topic: Re: Adding AES encryption to VEDIT (5 of 7), Read 41 times Conf: VEDIT Sales and Info From: Ted Green Date: Tuesday, February 12, 2008 10:20 AM At 03:13 AM 2/12/2008, you wrote: >From: "Pauli Lindgren" >However, the normal (un-encrypted) file should not have a header. If you have saved the file without encryption, you do not need the information that it has been encrypted earlier. Yes, I was thinking that too. One question becomes, how does the user save the file in un-encrypted form, if desired. Ted.

Topic: Re: Adding AES encryption to VEDIT (6 of 7), Read 40 times Conf: VEDIT Sales and Info From: Pauli Lindgren Date: Tuesday, February 12, 2008 11:35 AM On 2/12/2008 10:20:28 AM, Ted Green wrote: > >One question becomes, how does the user save the file in >un-encrypted form, if desired. I guess you could use Save As command. The File Save dialog box would have "Encrypt" tickbox. -- Pauli

Topic: Re: Adding AES encryption to VEDIT (7 of 7), Read 44 times Conf: VEDIT Sales and Info From: Ted Green Date: Tuesday, February 12, 2008 11:52 AM At 11:43 AM 2/12/2008, you wrote: >From: "Pauli Lindgren" > >On 2/12/2008 10:20:28 AM, Ted Green wrote: >> >>One question becomes, how does the user save the file in >>un-encrypted form, if desired. > >I guess you could use Save As command. >The File Save dialog box would have "Encrypt" tickbox. OK. That would work. The "Encrypt" would be enabled by default for encrypted files, but could be unchecked. Ted.