Sign in Subscribe

DES (Data Encryption Standard)

Last updated on 

Data Encryption Standard (DES) is a symmetric key block cipher that was developed by IBM in the early 1970s and later adopted as a federal standard in the United States in 1976. It is a widely used encryption algorithm that has been implemented in various software and hardware systems. DES was the first cryptographic algorithm to be approved by the U.S. National Bureau of Standards (NBS), now known as the National Institute of Standards and Technology (NIST), for protecting sensitive, unclassified government information.

DES is a block cipher, which means it encrypts data in fixed-size blocks. The standard block size for DES is 64 bits, meaning that the algorithm takes in 64 bits of plaintext and outputs 64 bits of ciphertext. The key size for DES is 56 bits, meaning that the encryption and decryption keys are both 56 bits long. The DES algorithm consists of several rounds of permutation and substitution operations that transform the plaintext into ciphertext.

The DES algorithm is based on the Feistel structure, which was first introduced by Horst Feistel in 1973. The Feistel structure is a way of constructing block ciphers that is based on the idea of repeatedly applying a simple encryption function to the plaintext, with the output of each round being used as input for the next round. The function used in DES is known as the Feistel function.

The Feistel function takes a 32-bit input and produces a 32-bit output. It consists of several operations, including expansion, substitution, permutation, and XOR. The expansion operation expands the input from 32 bits to 48 bits by repeating some of the bits. The substitution operation applies a non-linear S-box to the 48-bit input to produce a 32-bit output. The permutation operation rearranges the bits of the output to produce another 32-bit value. Finally, the XOR operation combines the output of the permutation operation with the original 32-bit input.

The DES algorithm consists of 16 rounds of the Feistel function, with each round using a different 48-bit subkey that is derived from the main 56-bit key. The process of key generation in DES involves several steps, including a permutation and two additional operations known as the left shift and the key compression function. The permutation operation reorders the bits of the original 64-bit key. The left shift operation shifts the key to the left by one or two bits, depending on the round number. The key compression function reduces the size of the key from 56 bits to 48 bits by discarding every eighth bit.

During each round of the DES algorithm, the 64-bit input is divided into two 32-bit blocks, the left and right halves. The Feistel function is applied to the right half, using the subkey for that round. The output of the Feistel function is then XORed with the left half, and the result becomes the new right half. The original right half becomes the new left half. This process is repeated for all 16 rounds.

The final output of the DES algorithm is the result of swapping the left and right halves of the final round output and then applying a final permutation operation. This ensures that the encryption and decryption processes are identical, except for the order in which the subkeys are used.

DES is a widely used encryption algorithm that has been implemented in many software and hardware systems. However, due to advances in computing technology, the 56-bit key size of DES is now considered insufficient to provide adequate security. In response, the NIST has developed a new standard known as the Advanced Encryption Standard (AES), which uses a larger block size and key size than DES. AES has now become the most widely used symmetric encryption algorithm in the world.

In conclusion, DES is an important cryptographic algorithm that played a significant role in the development of modern cryptography. Its adoption by the US government as a standard for protecting sensitive information helped to establish the importance of encryption in protecting digital information.

However, as computing power has increased, the 56-bit key size of DES has become vulnerable to brute-force attacks, where an attacker tries all possible keys until the correct one is found. This led to the development of triple-DES (3DES), which uses the DES algorithm three times in a row with three different keys, providing a key size of 168 bits.