# AES — Advanced Encryption Standard

AES is the modern standard symmetric-key block cipher that has replaced DES/3DES in nearly every application. It is valued for its speed, robustness, and extensive support in both hardware and software.

---

## Key Features

- **Block Size:** 128 bits (16 bytes)
- **Key Sizes:** 128, 192, or 256 bits (the same key is used for both encryption and decryption)
- **Efficiency:** Rapid encryption/decryption in hardware and software
- **Security:** Highly secure when used with recommended modes and proper key management

---

## How It Works

AES uses a substitution–permutation network that processes data in rounds. The number of rounds depends on the chosen key size:
- **AES-128:** 10 rounds
- **AES-192:** 12 rounds
- **AES-256:** 14 rounds

Each round consists of:
1. **SubBytes:** A nonlinear byte substitution using an S-box.
2. **ShiftRows:** A cyclic permutation of the rows in the state array.
3. **MixColumns:** A mixing process that operates on the columns of the state.
4. **AddRoundKey:** A bitwise XOR of the state with the round key.

_Decryption is performed by applying the inverse of these operations in reverse order._

> **Note:** The underlying mathematics is complex. In practice, always use a trusted cryptographic library for AES operations.

---

## Communication Flow

```text
Alice                          Bob                          Eve
-----                          ---                          ---
Plaintext P
  | -- Encrypt with key K -->  Ciphertext C
  |                     | -- Decrypt with key K -->
  |                     |                     |
  |                     |                     V
  |                     |               Plaintext P
```

- **Alice:** Encrypts the plaintext (P) using AES with key (K).
- **Bob:** Decrypts the ciphertext (C) using the same key (K).
- **Eve:** Can observe the ciphertext, but without the secret key, she cannot reveal the plaintext.

---

## Parameters and Modes of Operation

- **Block Size:** 128 bits (fixed)
- **Key Sizes:** 128, 192, or 256 bits
- **Modes of Operation:** ECB, CBC, CTR, GCM, etc.
  - **IV/Nonce:** Most modes require an initialization vector (IV) or nonce. This must be unique and random for every encryption instance.

### Security Considerations

- **Avoid ECB Mode:** ECB is not recommended due to its tendency to reveal data patterns.
- **Prefer AEAD Modes:** Use authenticated modes like AES-GCM or AES-CCM to ensure both confidentiality and integrity.
- **Unique IV/Nonce:** Always generate a **new, random IV/nonce** for each encryption to prevent attacks.
- **Key Management:** Securely generate and store keys; use cryptographically strong random sources.
- **Key Length Choice:** AES-128 is very secure; use AES-256 only if required by policy or for additional security margin.

---

## Applications of AES

- **TLS/HTTPS:** Securing web traffic.
- **Messaging:** Used in secure messaging platforms such as WhatsApp and Signal.
- **VPNs & Wi-Fi:** Common in VPN encryption and Wi-Fi protocols like WPA2/WPA3.
- **Financial Transactions:** Employed in payment systems and other secure financial communications.

In [2]:
from Crypto.Cipher import AES
from Crypto.Random import get_random_bytes

# --- Key and nonce ---
key = get_random_bytes(16)   # AES-128 (16 bytes). For AES-256, use 32 bytes.
nonce = get_random_bytes(12) # GCM standard nonce size = 96 bits

# --- Encrypt ---
cipher = AES.new(key, AES.MODE_GCM, nonce=nonce)
plaintext = b"AES: secure and authenticated"
aad = b"header"   # optional associated data (authenticated, not encrypted)

cipher.update(aad)
ciphertext, tag = cipher.encrypt_and_digest(plaintext)

print("Ciphertext (hex):", ciphertext.hex())
print("Tag (hex):", tag.hex())

# --- Decrypt ---
cipher_dec = AES.new(key, AES.MODE_GCM, nonce=nonce)
cipher_dec.update(aad)
recovered = cipher_dec.decrypt_and_verify(ciphertext, tag)

print("Recovered:", recovered)


Ciphertext (hex): 56e733bac07be6fb894c15c213a02cbd7ae195e3de84a19e737cddcba8
Tag (hex): cb09e8ba7b2d007c7b2127df9fb0c4ab
Recovered: b'AES: secure and authenticated'
