forro

The Forró cipher: https://link.springer.com/article/10.1007/s00145-023-09455-5

Installation

[dependencies]
forro = "0.1"

Security

Disclosure

This project uses full disclosure. If you find a security bug in an implementation, please e-mail me or create a GitHub issue.

Disclaimer

You should only use cryptography libraries that have been reviewed by cryptographers or cryptography engineers. While I am a cryptography engineer, I'm not your cryptography engineer, and I have not had this project reviewed by any other cryptographers.

lib.rs:

The Forró cipher.

Forró is an add-rotate-xor (ARX) cipher recently introduced by Murilo et al. at Asiacrypt 2022. It is similar to the ChaCha cipher, but offers better diffusion and requires fewer rounds. In general, Forró saves about two rounds for every seven ChaCha rounds. In other words, Forró14 is equivalent to ChaCha20, Forró10 is equivalent to ChaCha12, and so on.

This crate implements the non-authenticated stream ciphers and the AEAD APIs.

Warning

Forró is a very new cipher and has not had much independent cryptanalysis. This library is also undertested (e.g., it does not have negative tests.) You should not use this in production.