### What is DES?

**Data Encryption Standard (DES)** is a symmetric-key algorithm for the encryption of digital data. Although its short key length makes it insecure against brute-force attacks today, it was highly influential in the development of modern cryptography and was widely used for many years. It operates by encrypting data in blocks, making it a block cipher.

DES originated in the early 1970s at **IBM**, where a team led by Horst Feistel developed a cipher known as Lucifer. The U.S. National Bureau of Standards (NBS), now the National Institute of Standards and Technology (NNIST), recognized the growing need for a standardized cryptographic algorithm for protecting sensitive government data.

IBM submitted a refined version of Lucifer, which was ultimately adopted as the **Federal Information Processing Standard (FIPS) 46** in 1977, officially becoming the Data Encryption Standard (DES).

### ** Basic Concepts about Data Encryption Standard (DES)**



*   **Symmetric-Key:** The same secret key is used for both encrypting the plaintext and decrypting the ciphertext

*   **Block Cipher:** Instead of encrypting data one bit at a time, DES processes data in fixed-size blocks. Specifically, it takes a 64-bit block of plaintext as input and transforms it into a 64-bit block of ciphertext.



### Historical Applications of DES

*   **Financial Transactions**
*   **Secure Email**
*   **Virtual Private Networks (VPNs)**
*   **Database Encryption**
*   **Smart Cards**

### Current Security Status: **Insecure** for Modern Applications

Today, both DES and Triple DES (3DES) are considered insecure for most modern cryptographic applications. Here's why:

*   **DES is Fundamentally Broken:** With its 56-bit key, DES can be brute-forced in a matter of hours or even minutes.

*   **3DES is Deprecated / Inefficient:** While 3DES offers a significantly larger effective key length (112-168 bits), making it much more resistant to brute-force attacks than single DES, it suffers from several drawbacks: **Performance**, **Block Size** and **Vulnerability to Meet-in-the-Middle Attacks**.

*   **The Need for AES:** The Advanced Encryption Standard (AES) has superseded both DES and 3DES as the standard symmetric-key encryption algorithm. AES supports key lengths of 128, 192, and 256 bits, offers superior performance, and has a larger block size (128 bits).

In [1]:
#Install Dependencies
!pip install pycryptodome



In [2]:
#Import Libraries
from Crypto.Util.Padding import pad, unpad
from Crypto.Cipher import DES
from Crypto import Random

import itertools
import time

In [3]:
#Generate a random 8-byte DES key ( Hexadecimal Value )
key = Random.get_random_bytes(8)
print(key)

b')\x80\x1aX\xa2d\x94\xbf'


In [4]:
#Show the String Value ( Representation )
hex_string = key.hex()
print(hex_string)

29801a58a26494bf


In [5]:
#Define a Plaintext Message
plaintext = input("Insert your Text: ").encode('utf-8')

Insert your Text: Rafael


In [6]:
#Create a DES Cipher Object ( Mode ECB )
cipher = DES.new(key, DES.MODE_ECB)
print(cipher)

<Crypto.Cipher._mode_ecb.EcbMode object at 0x7fbfe12eb2f0>


In [7]:
#Convert the Plaintext in a multiple of 8 bytes (DES block size) and Encrypt ( Apply Cipher )
padded_plaintext = pad(plaintext, DES.block_size)
encrypted_data = cipher.encrypt(padded_plaintext)

In [8]:
#Show the Results of the Encrypt
print(f"Original Plaintext: {plaintext.decode('utf-8')}")
print(f"DES Key: {key.hex()}")
print(f"Encrypted Data: {encrypted_data.hex()}")

Original Plaintext: Rafael
DES Key: 29801a58a26494bf
Encrypted Data: 868a5bd28b28a4d3


In [9]:
#Decrypt Function ( With Same Key and Mode )
decipher = DES.new(key, DES.MODE_ECB)
decrypted_padded_data = decipher.decrypt(encrypted_data)
decrypted_plaintext = unpad(decrypted_padded_data, DES.block_size)

In [10]:
# Show the Results
print(f"Decrypted Plaintext: {decrypted_plaintext.decode('utf-8')}")

Decrypted Plaintext: Rafael


#### Simplified Brute-Force Example

1.  Encrypt a known plaintext with a randomly generated
2.  Iterate through a predefined, small set of possible keys.
3.  For each potential key, attempt to decrypt the ciphertext.
4.  If the decrypted data matches the original known plaintext, we have found the key.

In [11]:
#Example of a 2-byte Key
target_key = Random.get_random_bytes(2) + b'\x00' * 6
original_plaintext = b"Hello"

In [12]:
# DES Apply ( Encryption Step )
padded_original_plaintext = pad(original_plaintext, DES.block_size)
target_cipher = DES.new(target_key, DES.MODE_ECB)
encrypted_data = target_cipher.encrypt(padded_original_plaintext)

In [13]:
#Show the Results
print(f"Target Original Plaintext: {original_plaintext.decode('utf-8')}")
print(f"Target Key: {target_key.hex()}")
print(f"Encrypted Data: {encrypted_data.hex()}\n")

Target Original Plaintext: Hello
Target Key: 8735000000000000
Encrypted Data: 86957903bc7acf4b



In [14]:
#Brute Force Application for DES
print("Starting Brute-Force Attack...")
start_time = time.time()

found_key = None

for i in range(2**16):
    current_key_bytes = i.to_bytes(2, 'big')
    padded_current_key = current_key_bytes + b'\x00' * 6

    try:
        test_decipher = DES.new(padded_current_key, DES.MODE_ECB)
        test_decrypted_padded_data = test_decipher.decrypt(encrypted_data)
        test_decrypted_plaintext = unpad(test_decrypted_padded_data, DES.block_size)

        if test_decrypted_plaintext == original_plaintext:
            found_key = padded_current_key
            break # Key found!
    except ValueError:
        continue

end_time = time.time()

if found_key:
    print(f"Key found in {end_time - start_time:.4f} seconds!")
    print(f"Found Key (first 2 bytes relevant): {found_key.hex()}")
    print(f"Decrypted Plaintext with found key: {test_decrypted_plaintext.decode('utf-8')}")
else:
    print("Key not found within the simulated 2-byte key space.")

Starting Brute-Force Attack...
Key found in 0.5385 seconds!
Found Key (first 2 bytes relevant): 8634000000000000
Decrypted Plaintext with found key: Hello
