Encryption

hello2k1 · 2002-07-31T09:37:44

Right now I am working on constructing an encryption mechanism into my game''s gameplay packets. Each server must be able to suppost vast quantities of users, but yet still be secure (since we''ll be using UDP). We are already implementing packet sequencing, but are exploring the option of adding an encryption agorythm into the mix. Now, havign said that, I would liek to call upon the encryption experts in the house to answer me a little question; How could an encryption layer be implemented in which the key cannot be derived from knowing the encrypted information? eg. If the encrypted packet 00 FF 00 is intercepted by a hacker which knows that the packet contained "00 FF 00" prior to being encrypted, how could I stop this hacker from obtaining the encryption key? The "XOR method" clearly fails in this instance: Packet: 1001 0010 0111 XOR Key: 0001 1011 1100 = New Packet: 1000 1001 1011 If I were to know that the original packet was "1001 0010 0111", I could easily obtain the key, and use it to decrypt all the other packets, or even inject packets into stream. This is demonstrated here: New Packet: 1000 1001 1011 XOR Packet: 1001 0010 0111 = Key: 0001 1011 1100 Thank you.

Math and Physics Programming

Started by hello2k1 July 25, 2002 06:48 PM

30 comments, last by hello2k1 21 years, 8 months ago

Neosmyle

144

July 30, 2002 11:57 PM

quote:Original post by Anonymous Poster
Why use UDP to send encryption stuff? You need to make sure it gets there, so I should think you would use TCP. I would use two sockets, UDP for game info and TCP for encryption stuff.

However, he is trying to support 5000 connections per server, and I don''t think that 5000 simultaneous TCP sockets would hold up very well

hello2k1

122

Author

July 31, 2002 09:37 AM

Definately, using 100% TCP is not the route I want to take. My partener has suggested using a mix of TCP and UDP - but that has yet to be tested.

Anonymous, you seem pretty confident

I would really like to hear what some of your ideas to prevent memory hacking client side are.

CBC really seems like the way to go, it seems pretty much unhackable when it comes to packet spoofing/sniffing. But like I keep saying, I need to figure out a way to decrypt it efficiently (10-30 cycles being my idea of efficient on the server).

------------------------------There are 10 types of people in this world, those who know binary, and those who don't.

Encryption

This topic is closed to new replies.

Popular Topics

Recommended Tutorials

Encryption

This topic is closed to new replies.

Popular Topics

Recommended Tutorials

Reticulating splines