# XOR Cipher

## Basics

The XOR cipher is a common yet surprisingly useful encryption method that takes advantage of the fact that the XOR $\left(\bigoplus\right)$ operation is 'reversible'.

For example, if a **message** byte `01000101` is XOR'd with a **key** byte `11101010`, bit by bit, we get the **encoded** byte:

$$
\begin{array}{cccc}
            & 0 & 1 & 0 & 0 & 0 & 1 & 0 & 1 \\
\bigoplus   & 1 & 1 & 1 & 0 & 1 & 0 & 1 & 0 \\
\hline
            & 1 & 0 & 1 & 0 & 1 & 1 & 1 & 1
\end{array}
$$

Taking our **encoded** byte `10101111`, we can XOR it against our **key** byte once again to effectively decode the message:

$$
\begin{array}{cccc}
            & 1 & 0 & 1 & 0 & 1 & 1 & 1 & 1 \\
\bigoplus   & 1 & 1 & 1 & 0 & 1 & 0 & 1 & 0 \\
\hline
            & 0 & 1 & 0 & 0 & 0 & 1 & 0 & 1
\end{array}
$$

## Application

To actually apply this to 'real' messages (ie. ASCII), we can just operate on each individual character with our key character. **Note**: from now own individual bytes will be represented as base-10 integers following ASCII convention as opposed to binary.

For example, let the **message** string be `"A little teapot"`, and let the **key** be `"j"`:

$$
\begin{array}{cccc}
            & \mathrm{A} & \mathrm{ } & \mathrm{l} & \mathrm{i} & \mathrm{t} & \mathrm{t} & \mathrm{l} & \mathrm{e} & \mathrm{ } & \mathrm{t} & \mathrm{e} & \mathrm{a} & \mathrm{p} & \mathrm{o} & \mathrm{t} \\
\bigoplus   & \mathrm{j} & \mathrm{j} & \mathrm{j} & \mathrm{j} & \mathrm{j} & \mathrm{j} & \mathrm{j} & \mathrm{j} & \mathrm{j} & \mathrm{j} & \mathrm{j} & \mathrm{j} & \mathrm{j} & \mathrm{j} & \mathrm{j} \\
\hline
            & 65 & 32 & 108 & 105 & 116 & 116 & 108 & 101 & 32 & 116 & 101 & 97 & 112 & 111 & 116 \\
\bigoplus   & 106 & 106 & 106 & 106 & 106 & 106 & 106 & 106 & 106 & 106 & 106 & 106 & 106 & 106 & 106 \\
\hline
            & 43 & 74 & 6 & 3 & 30 & 30 & 6 & 15 & 74 & 30 & 15 & 11 & 26 & 5 & 30 \\
\end{array}
$$

Of course, decoding works exactly the same:

In [10]:
message = "A little teapot"
key = "j"
encoded = []

print("ENCODING")
print("Message to be encoded:\t", message)
print("XOR key:\t\t", key)

for char in message:
    encoded_ascii = ord(char) ^ ord(key) ## Cipher – encoding
    encoded.append(encoded_ascii)
    
print("Encoded message:\t", " ".join([str(c) for c in encoded]), '\n')

# -----------------------------

decoded = ""
print("DECODING")

for encoded_ascii in encoded:
    char = chr(encoded_ascii ^ ord(key)) ## Cipher -- decoding
    decoded += char
    
print("Decoded messge:\t\t", decoded)


ENCODING
Message to be encoded:	 A little teapot
XOR key:		 j
Encoded message:	 43 74 6 3 30 30 6 15 74 30 15 11 26 5 30 

DECODING
Decoded messge:		 A little teapot


# Bigger key, better person

So far only single byte keys have been used which only allows for 256 unique keys, making the cipher trivial to brute force. The simplest implementation of larger, multi-byte keys is to simply cycle through the characters and repeat when there are none left.

For example, let the **message** string by `"Short and stout"`, and let the key be `"handle"`:

$$
\begin{array}{cccc}
            & \mathrm{S} & \mathrm{h} & \mathrm{o} & \mathrm{r} & \mathrm{t} & \mathrm{ } & \mathrm{a} & \mathrm{n} & \mathrm{d} & \mathrm{ } & \mathrm{s} & \mathrm{t} & \mathrm{o} & \mathrm{u} & \mathrm{t} \\
\bigoplus   & \mathrm{h} & \mathrm{a} & \mathrm{n} & \mathrm{d} & \mathrm{l} & \mathrm{e} & \mathrm{h} & \mathrm{a} & \mathrm{n} & \mathrm{d} & \mathrm{l} & \mathrm{e} & \mathrm{h} & \mathrm{a} & \mathrm{n} \\
\hline
            & 83 & 104 & 111 & 114 & 116 & 32 & 97 & 110 & 100 & 32 & 115 & 116 & 111 & 117 & 116 \\
\bigoplus   & 104 & 97 & 110 & 100 & 108 & 101 & 104 & 97 & 110 & 100 & 108 & 101 & 104 & 97 & 110 \\
\hline
            & 59 & 9 & 1 & 22 & 24 & 69 & 9 & 15 & 10 & 68 & 31 & 17 & 7 & 20 & 26 \\
\end{array}
$$

In [13]:
message = "Short and stout"
key = "handle"
key_length = len(key)
encoded = []

print("ENCODING")
print("Message to be encoded:\t", message)
print("XOR key:\t\t", key)

for i, char in enumerate(message):
    key_char = key[i % key_length] ## Select appropriate character of key
    encoded_ascii = ord(char) ^ ord(key_char) ## Cipher – encoding with cycling key
    encoded.append(encoded_ascii)
    
print("Encoded message:\t", " ".join([str(c) for c in encoded]), '\n')

# -----------------------------

decoded = ""
print("DECODING")

for i, encoded_ascii in enumerate(encoded):
    key_char = key[i % key_length] ## Select appropriate character of key
    char = chr(encoded_ascii ^ ord(key_char)) ## Cipher -- decoding with cycling key
    decoded += char
    
print("Decoded messge:\t\t", decoded)


ENCODING
Message to be encoded:	 Short and stout
XOR key:		 handle
Encoded message:	 59 9 1 22 24 69 9 15 10 68 31 17 7 20 26 

DECODING
Decoded messge:		 Short and stout


## Limitations

What we're left with is an encryption system that is surprisingly strong against brute force cracking when using large, randomly generated keys. However, with the right tools (eg. Fourier frequency analysis), the cycling nature of the encryption can be abused to extract the key. Hence, XOR ciphers are rarely the main defensive layer for encryption but rather an addition on top of other stronger methods to either exchange keys or other miscellaneous information.

## Decoding what I sent you:

```
raw_message = "14 4 69 1 12 18 11 74 84 1 8 8 69 1 6 6 67 18 17 17 65 24 10 88 26 22 6 85 58 10 4 0 73 88 39 6 17 85 21 11 5 76 51 25 5 22 17 28 21 90 65 9 29 27 28 0 6 85 25 0 65 5 3 88 4 10 67 28 26 3 14 30 8 25 29 26 12 27 84 12 18 76 3 10 6 30 67 25 21 22 21 76 6 29 7 7 22 7 13 75 65 59 13 29 7 83 7 26 17 22 65 31 6 16 6 28 15 85 7 17 0 30 17 88 15 28 17 85 13 10 20 83"

encoded = raw_message.split(" ")
key = "alexiscute"

decoded = "".join([chr(int(encoded_ascii) ^ ord(key[i % len(key)])) for i, encoded_ascii in enumerate(encoded)])
print("Message:", decoded)
```

You can run it for yourself ;)