TLDR: An S-Box (S for "substitution") is a function (often explicitly enumerated) with fixed-length input and output. A P-Box (P for "permutation") is a one-to-one S-Box.

Wolf trap gaaaaang

ECC so complicatingggggggg

Nice explanation. Can you please do some lectures on Cryptanalysis (Linear & Differential) in details. Thanks.

thanks from depth of my heart. All people who explain AES copy pre-calculated S-BOX table and explain some operations on GF(2^8) and I really got tired from bad videos trying to explain how to build the S-BOX table and you really was my savior thanks <3

The least sexy topic I could find on KZbin. No one, I mean no one has ever gotten “put in the mood” from this video… UNTIL NOW! j/k

thank you!

For number_bits, you could use the bit_length() method of an int.

Now I know one of the reasons Bitcoin picked SECP256K1, the prime it uses is congruent to 3 mod 4, so it's way easier to find your y's given an x, which is important when they compress public keys and only say whether y is even or odd

Maybe you could give some insight as to why it's called a quadratic residue? I guess that sounds better than "has an integer square root mod p"? Would a cube root be called a cubic residue and so on?

I had never heard that odd primes are congruent to either 1 or 3 mod 4, thanks for teaching me something new today! I'll have to think about that.

Euler was an astounding mathematician, I didn't know about Euler's criterion until now

Very interesting, i like your videos because you're well spoken and easy to understand

Thank you Sir

Excellent Presentation - Thank you!

Awesome video sir ❤

Regarding the number of tests you are likely to have to make before you find a probable prime, that actually follows from the Prime Number Theorem, a very important theorem in Number Theory. From this theorem, if n is a randomly chosen positive integer, then the probability n is prime is 1/ln(n), where ln(n) is the natural logarithm of n. From this it follows that the average gap between prime numbers is ln(n). As you are testing only odd integers, the number of tests needed will be on average half that, i.e. ln(n)/2. To give a concrete example, if n is created as in your video using 100 randomly assigned binary digits, then you'll get a number between 2⁹⁹ and 2¹⁰⁰, which is roughly 10³⁰. The average gap should be about 30 × ln(10). That is about 69, so it should take 34 or 35 tests on average to get a hit. Even with 1000 binary digits - that would be a number with over 300 digits when written in decimal - the number of tests on average should be around 350.

where is i can find code from video?please answer🙏🙏🙏

I will be so greatful if you make another video about calculating the nonlinearity of an SBOX

thanks Sir! That is very helpful..

Where is part 1 i cant find it

Great content

Such a great content, thank you sir for this magnificent lecture

do you have any experience with any padding oracle exploits? those seem really nice considering all block ciphers have to use padding unless the password used to create the key is exactly the length required... padding oracles seem to work well in practice...not sure about IRL though

Hi! Thank you for tutorial! I've heard on one of your videos you were planning to launch courses on udemy about cryptography. Is it still in your plans? Thanks!

Glad to see you're still making content. Thanks for sharing!

Dear Sir kindly tell the book for understanding the construction of Substitution boxes in detail. I want to construct substitution box but facing some difficulties in research papers

Any chance to get the last part? Awesome content btw

This series has been amazing! I’ve really struggled finding algorithms and code snippets for elliptic curve addition over large prime fields applicable to real world cryptographic parameters.

You should add this to your block cipher playlist!

You mentioned that the example @27:04 came from a textbook. What textbook is that?

Thank you very much sir for explaining in very easy way. I need your help, if you feel easy kindly send your mail

Is there a code that can help in finding the point's order on an elliptic curve? For example, say that a = 2 and b=9 And there is the pints such as (12, 6). The order becomes 3. Is there a way for me to achieve this?

This is truly awesome, thank you so much. You mention doing another video that uses the LAT to do Cryptanalysis, it will be great to see that on a FEAL 4 Cipher.

I’ve been looking for an accurate tutorial in this topic for ages! Thanks for the upload!

Thank you, any fast way of producing false positives for Miller-Rabin?

Very nice lecture respected sir

Great work.

I run the code in python and i have the error '' AttributeError: 'EllipticCurve' object has no attribute 'define_points'''. How can i fix it ?

hi, great video. if it suitable to design s box 16 bit from 8. i mean that n = 8 and m = 16?

Great video sir..i have a question will it work if i input x and y value first ?

Thank you, man! I'm doing homework on this implementation so you've helped me a lot. I won't forget to link URL on you!^)💙💛

Got some goosebumps when seeing an indentation of two spaces 😜

superb video. thanks so much!

Thank you this video was extremly helpfull to understand some key concepts!

Using the pBox function for the key rotation was very smart. I’ve read many implementations of DES and have never seen that done before. It makes the code much easier to read & follow. As a matter of fact, after coding your examples in c, for the first time, I realized that there are no arithmetic operations underpinning DES - just substitutions. There are no groups, rings, fields, or vector spaces (linear or affine) with mixed operations to worry about. Yes, the RoundKey is Xor’d with half the block, but this doesn't seem exploitable in an abstract algebra sorta way. All security in DES rests in those s-boxes. I can see that better now. Please keep up the great work. P.S. If I’m wrong, please let me know.

Amazing! Thank you so much!!!!

Awesome!

key schedule algorithms are hidden attack surface of cryptography

Your explanations are by far the best i found on the Internet. Thank You very much Sir!