Camellia Encryption/Decryption
Internationally recognized secure encryption algorithm supporting 128/192/256-bit keys
Security Note
Camellia is selected by CRYPTREC (Japan) and NESSIE (EU) as a recommended cipher, with security levels equivalent to AES.
About Camellia
Camellia is a symmetric key block cipher jointly developed by Mitsubishi Electric and NTT in 2000. It has a block size of 128 bits and supports key sizes of 128, 192, and 256 bits, the same as AES.
It is known for its high efficiency across various hardware and software platforms and high level of security. It is standardized by ISO/IEC, IETF (SSL/TLS), EU NESSIE, and Japan CRYPTREC.
Key Features
- Block Size: 128 bits (16 bytes)
- Rounds: 18 rounds for 128-bit key; 24 rounds for 192/256-bit keys
- Structure: Feistel network
- Standard: RFC 3713, ISO/IEC 18033-3
Modes of Operation
- CBC: Recommended, requires IV, secure.
- ECB: Insecure, no IV, reveals patterns.
- CFB: Stream cipher mode.
- OFB: Stream cipher mode.
Algorithm Comparison
| Algorithm | Block Size | Key Length | Rounds | Security | Standard Certification |
|---|---|---|---|---|---|
| Camellia | 128 bit | 128/192/256 | 18/24 | Excellent | ISO/NESSIE/CRYPTREC |
| AES | 128 bit | 128/192/256 | 10/12/14 | Good | NIST |
| Twofish | 128 bit | 128/192/256 | 16 | Excellent | AES Finalist |
| DES | 64 bit | 56 | 16 | Weak | NIST (Deprecated) |
Security Considerations
- Camellia provides security equivalent to AES, with no known practical attacks
- The cipher combines Feistel and SPN structures to enhance security
- Extensive cryptanalysis has confirmed its resistance to differential and linear cryptanalysis
- 128-bit block size meets modern security requirements, avoiding birthday attack vulnerabilities
Use Cases
- Applications requiring ISO/IEC 18033-3 compliance
- Japanese government and financial system encryption
- European projects requiring NESSIE-certified algorithms
- TLS/SSL encryption (RFC 5932, RFC 6367)
- IPsec VPN encryption (RFC 4312)
- Smart cards (due to efficient hardware implementation)
References
FAQ
Camellia vs AES?
Both are very similar in security and performance. AES is more ubiquitous due to NIST selection and hardware acceleration (AES-NI). Camellia is simpler in hardware design and is a primary competitor/backup to AES.
Which key length should I choose?
128-bit is secure enough for now. 256-bit is recommended for top-secret data to resist future quantum computing threats.
Why do I need an IV?
Initialization Vector (IV) adds randomness so that the same plaintext encrypted with the same key produces different ciphertext each time.
Is this tool secure?
Yes. All computations happen locally in your browser; your key and data never leave your device.