Skip to main content

Simple, secure encryption and decryption for Python 2.7 and 3

Project description

What Does Simple Crypt Do?

Simple Crypt encrypts and decrypts data. It has two functions, encrypt and decrypt:

from simplecrypt import encrypt, decrypt
ciphertext = encrypt('password', plaintext)
plaintext = decrypt('password', ciphertext)

That’s it. You can see the implementation on github.

Why Should I Use Simple Crypt?

  • It uses standard, well-known algorithms, closely following the recommendations here.

  • The established, efficient pycrypto library provides the algorithm implementations (the cipher used is AES256).

  • It includes a check (an HMAC with SHA256) to warn when ciphertext data are modified.

  • It tries to make things as secure as possible when poor quality passwords are used (PBKDF2 with SHA256, a 256 bit random salt (increased from 128 bits in release 3.0.0), and 10,000 rounds). But that doesn’t mean you should use a poor password!

  • Using a library, rather than writing your own code, means that we have less solutions to the same problem. That means more chance of finding bugs, which means more reliable, more secure code.

  • If simple-crypt does have a bug, the use of a header in the ciphertext data will help support an upgrade path (I can’t promise full backwards support, because any solution will depend on the attack, but at least the needed information is present).

What Else Should I Know?

  • You must also install pycrypto. Note that pycrypto has parts written in C so requires a full python install. On some unix systems that may mean adding a package like python-dev from your package manager.

  • In Python 3 the outputs from encrypt and decrypt are bytes. If you started with string input then you can convert the output from decrypt using .decode('utf8').

mystring = decrypt('password', ciphertext).decode('utf8')
  • Release 3.0.0 can decrypt data from previous versions, but data encrypted by 3.0.0 onwards cannot be decrypted by earlier code (instead, an error is raised asking the user to update to the latest version).

  • (c) 2012-2014 Andrew Cooke, andrew@acooke.org; 2013 d10n, david@bitinvert.com. Released into the public domain for any use, but with absolutely no warranty.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

simple-crypt-3.0.1.tar.gz (8.5 kB view details)

Uploaded Source

File details

Details for the file simple-crypt-3.0.1.tar.gz.

File metadata

File hashes

Hashes for simple-crypt-3.0.1.tar.gz
Algorithm Hash digest
SHA256 270e2ee620d27de0e8d0f4534aea233bb8bc396db7f3b2abe8491aa32d34dc3c
MD5 e3ee85932c74a4396b4ce05ae387c6cc
BLAKE2b-256 dba51c165b679c68d04bf50a49c159e438a4e99f27942b6fe2058f32f89fdb85

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page