GOST Online Encryption/Decryption
GOST 28147-89 and Magma (GOST R 34.12-2015) encryption/decryption tool supporting multiple modes and S-Box options
Educational Use Only
GOST 28147-89 is cryptographically obsolete. New projects should use AES. This tool is for testing, learning, and legacy system maintenance only.
About GOST 28147-89 and Magma
GOST 28147-89 is a Russian cryptographic standard (GOST) developed by the Soviet Union in 1989 and publicly released in 1994. For over three decades, it has been the primary encryption standard used by the Russian Federation government, military, banks, and government organizations in Russia, Belarus, Kazakhstan, and other CIS countries.
GOST 28147-89 is a 64-bit block cipher with a key length of 256 bits (32 bytes) using 32 rounds of encryption. The algorithm uses 8 4×8-bit S-Boxes. GOST 28147-89 is considered weakened in modern cryptanalysis, but it is still used due to legacy system compatibility and specific regulatory requirements in CIS countries.
About Magma (GOST R 34.12-2015)
Magma is a 64-bit block cipher defined in GOST R 34.12-2015 standard, a modern successor to GOST 28147-89. Magma retains the core Feistel structure and 32 rounds of GOST 28147-89, but uses a fixed TC26-Z S-Box and adopts big-endian byte processing order.
RFC 8891 formally defines Magma's technical specifications. The main differences from GOST 28147-89 are: byte order is big-endian (GOST 28147-89 is little-endian), fixed S-Box (GOST 28147-89 supports multiple S-Boxes), and S-Box application order π[0]→π[7]. Magma is one of Russia's current lightweight encryption standards.
GOST 28147-89 History
GOST (Russian State Standard) was developed during the Soviet era in 1989, becoming the official Russian encryption standard. After the dissolution of the Soviet Union, it continued to be used and was officially publicly released in 1994. The algorithm design is based on a Feistel network structure, similar to DES, incorporating Russian cryptographic research traditions.
Algorithm Comparison
| Algorithm | Type | Key Length | Block Size | Security | Rounds |
|---|---|---|---|---|---|
| GOST 28147-89 | Block Cipher | 256 bits (32 bytes) | 64 bits (8 bytes) | Moderate | 32 rounds |
| Magma | Block Cipher | 256 bits (32 bytes) | 64 bits (8 bytes) | Moderate | 32 rounds |
| AES | Block Cipher | 128, 192, 256 bits | 128 bits (16 bytes) | Excellent | 10-14 rounds |
Key Features
- 64-bit block size - suitable for smaller data blocks
- 256-bit key length - larger key space than DES
- 32 rounds - strong diffusion and confusion properties
- Multiple modes - supports ECB, CBC, CFB, OFB, CTR
Security Considerations
- Block size limitation - 64-bit blocks may leak pattern information for large files. Use smaller messages or add additional security layers.
- Cryptanalytic attacks - GOST has been subject to academic cryptanalysis showing reduced security margin compared to modern ciphers.
- Recommendation - New projects should use AES. GOST 28147-89 is only for legacy system compatibility maintenance.
Use Cases
- 🇷🇺 Legacy Russian Systems - Maintain compatibility with existing GOST infrastructure
- 📚 Educational Purpose - Learn classical cipher design and Russian cryptographic standards
- 🔄 System Integration - Interface with government or banking systems requiring GOST compliance
- 📦 Data Migration - Decrypt data from legacy GOST-encrypted archives and systems