Spritz is a stream cipher by Ron Rivest and Jacob Schuldt. It's essentially a redesign of RC4 using modern cryptographics tools and knowledge. This implementation is based directly on the whitepaper, implementing the the exact set of low-level primitives.
Notice: Spritz was broken in 2016 and should not be used for security purposes.
Spritz is a "sponge function" and, as such, has an API analgous to a sponge. It absorbs bytes and is squeezed to emit bytes. This is the sponge API:
spritz-create-- initializes a new statespritz-copy-- copy an existing statespritz-absorb-- absorb bytes into the statespritz-absorb-stop-- cleanly separates different inputsspritz-drip-- output a single bytespritz-squeeze-- output multiple bytes (convenience)
These methods are used to implement all sorts of cryptographic functions: hash, MAC, PRNG, encryption, and decryption. Some of these are provided as a slightly highter level API:
spritz-hash-- hashes a string or a bufferspritz-random-- random number generator (likecl-random)spritz-random-iv-- generate a secure initialization vector (IV)spritz-random-uuid-- generate a version 4 UUID
The "random" functions will, by default, use an internal random state that is seeded at package load time by a dozen different sources of entropy. This ensures the output of the PRNG functions is secure. Additional entropy, such as bytes from /dev/random, can be absorbed into this state by passing it to `spritz-random-stir'. Accidentally absorbing non-random data is harmless.
Finally, two user interface commands are defined. These use Spritz as both a stream cipher and key derivation function.
spritz-encrypt-bufferspritz-decrypt-buffer
Test vectors can be found in the unit tests.