MikhailBT
MikhailBT
/ key_wrap.py
Last active
August 29, 2015 14:24
— forked from kurtbrose/key_wrap.py
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ''' | |
| Key wrapping and unwrapping as defined in RFC 3394. | |
| Also a padding mechanism that was used in openssl at one time. | |
| The purpose of this algorithm is to encrypt a key multiple times to add an extra layer of security. | |
| Personally, I wouldn't recommend using this for most applications. | |
| Just use AES/mode CTR to encrypt your keys, the same as you would any other data. | |
| The time to use this code is when you need compatibility with another system that implements the RFC. | |
| (For example, these functions are compatible with the openssl functions of the same name.) |