Hill-GF-BigInt Reference Manual

High-Precision Matrix Encryption over NIST P-224 v0.7.4

Extending the Hill Cipher: The Hill-GF-BigInt Architecture

This reference implementation provides a high-entropy algebraic cipher using a 224-bit prime field. It utilizes parallel processing to handle high-dimensional matrix operations, providing a static work factor of up to 56,152,415 bits at N=500 (or even larger).

The Hill-GF-BigInt implementation represents a profound extension of the concepts first proposed by Lester Hill in 1929. While the original Hill Cipher was a landmark in polygraphic substitution, it was fundamentally limited by its small 26-element alphabet and vulnerability to Known-Plaintext Attacks (KPA). By evolving this classical foundation into a high-dimensional, BigInt-based architecture, we have transformed an early 20th-century algebraic concept into a "Heavyweight" cryptographic fortress capable of securing data with a static work factor exceeding 56 million bits, and with probabilistic encryption (explained below) this system is aymptotic to a One-Time-Pad (OTP).

The core of this breakthrough is the shift to the NIST P-224 prime field. By operating in a 224-bit Galois Field GF(P), the system moves beyond simple character modular arithmetic into the realm of high-precision number theory. Every block of data is processed through a matrix containing 250,000 of these 224-bit primes (at N=500), creating an inter-dependent mathematical web where a change in a single bit of plaintext results in a complete, unpredictable avalanche across the entire ciphertext block.

The Foundation: NIST P-224 Prime Field: The core algebraic security of this system is built upon NIST P-224, a prime field standard established by the National Institute of Standards and Technology. This specific prime (2^{224} - 2^{96} + 1) is a "generalized Mersenne prime" chosen for its structural efficiency in modular arithmetic, providing a high-security threshold that is computationally infeasible to break using traditional factorization or discrete logarithm attacks. By leveraging this standard, the system ensures that its mathematical foundations are verified against rigorous cryptographic benchmarks. For NIST's formal mathematical specifications and domain parameters, see page 52 of the NIST Special Publication 800-186: Recommendation for Elliptic Curve-Based Cryptography.

To provide a robust defense against modern analysis, the system introduces a non-linear 24 S-Box Layer. Before any matrix math occurs, each of the 24 bytes in a plaintext matrix element is passed through its own unique, randomly generated 8-bit Substitution Box. This ensures that the raw data is thoroughly scrambled at the byte level, adding a critical layer of "confusion" that complicates any attempt to find algebraic relationships in the underlying plaintext.

If you want to download (the latest version of) this software, click here for the Rust program "Hill-GF-BigInt.rs"

To defeat the primary weakness of linear ciphers—the Chosen-Plaintext Attack (CPA)—the system utilizes a rigorous Affine Transformation. Every encryption cycle concludes with the addition of a secret, N-dimensional Affine Offset Vector filled with U256 (256-bit) random integers. More details about why U256 is important, in the discussion preceding the ciphertext example at the end of this web page. By moving the transformation from a purely linear map to an affine one (C = MP + A), the system ensures that an attacker cannot use basic linear algebra or matrix inversion to recover the key from known (or chosen) plaintext-ciphertext pairs. This layer provides the mathematical "distance" necessary to prevent the cipher from collapsing under standard algebraic analysis.

Furthermore, the system achieves a state of Probabilistic Encryption through a specialized Packing mechanism. Before the data enters the matrix transformation, the 24 S-Boxed bytes are interleaved with 25 bits of high-entropy random noise. Specifically, we insert one cryptographically random bit in-between each of the 24 bytes, as well as at the beginning and end, for a total of 25 random bits inserted per 24 bytes. A representation of this would be: "R11111111R22222222R33333333R44444444R ... R" where the numbers represent each bit in the first, second, third, fourth bytes. This "Probabilistic Fog" ensures that the encryption process is non-deterministic; the exact same message, encrypted twice with the same key, will produce two entirely different ciphertexts. At a dimension of 500, this variance reaches a staggering 10^3762 unique possibilities per block. This asymptotic approach to a One-Time Pad makes differential cryptanalysis and brute-force patterns computationally irrelevant, as the "noise" effectively masks the underlying plaintext structure.

Despite the immense complexity of these operations, specifically the O(N^3) complexity required for matrix inversion during key generation, the system is optimized for the modern computer environment. Utilizing the Rayon parallelization framework, the implementation slices these massive matrix calculations across all available CPU cores (threads). We demonstrate that even a 500-dimensional system can be encrypted in mere milliseconds. The result is an asymptotic leap in security that offers the mathematical depth of advanced number theory with the real-world throughput of a modern stream cipher.

Feature Implementation Security Benefit
BigInt Prime Field NIST P-224 (224-bit) Prevents algebraic attacks common in small modular fields.
24-Way S-Box Layer Unique S-Box per byte Provides non-linear byte-level confusion prior to diffusion.
Affine Offset U256 N-Dimensional Vector Addition Breaks purely linear relationships to defeat Chosen-Plaintext Attacks (CPA) and Known-Plaintext Attacks (KPA).
Probabilistic Noise 25-bit random interleaving PER matrix element. Ensures unique ciphertext for identical plaintext blocks (Asymptotic OTP).
For dimension=500, this adds 25 * 500 = 12,500 random bits for probabilistic encryption!
Parallel Engine Rayon / Multi-core threading Allows massive dimensionality (500x500) without performance loss.

 
(no command given) 
# cargo run --release (equivalent to) ./target/release/hill-gf-bigint
Hill-GF-BigInt CLI v0.7.3
Usage: hill-gf-bigint [MODES] [ARGUMENTS]

Modes:
  --keygen       Generate key file
  --encrypt      Encrypt plaintext -> ciphertext
  --decrypt      Decrypt ciphertext -> reconstructed plaintext
  --info         Display key entropy/variance info

Arguments:
  -d, --dim   Matrix dimension (default: 10)
  -p       Plaintext filename (default: msg.txt)
  -c       Ciphertext filename (default: msg.enc)
  -k       Key filename (default: master.key)

 
keygen command
(Key Generation)
200x200 matrix
containing
40,000 numbers
at 224 bits each = 8,960,000 bits		 

# ./target/release/hill-gf-bigint --keygen --dim 200

Generating 200x200 Matrix over NIST P-224...

Key successfully saved to master.key
Keygen took: 6.238492239s

--- [Hill-GF-BigInt System Info] ---
Key File:           master.key
Modulus:            NIST P-224 (224 bits)
Dimension:          200 x 200
---------------------------------------
24x S-Box Entropy:               40,415 bits
Encryption Matrix Entropy:       8,960,000 bits
Affine Offset Entropy:           44,800 bits
---------------------------------------
Total Static Work Factor (WF):   9,045,215 bits

Probabilistic Noise per Block:   5,000 bits
Ciphertext Variance per Block:   ~1.41 x 10^1505
---------------------------------------

 
keygen command
(Key Generation)
500x500 matrix
containing
250,000 numbers
at 224 bits each = 56 MILLION BITS		 

# ./target/release/hill-gf-bigint --keygen --dim 500
Generating 500x500 Matrix over NIST P-224...

Key successfully saved to master.key
Keygen took: 87.481361983s

--- [Hill-GF-BigInt System Info] ---
Key File:           master.key
Modulus:            NIST P-224 (224 bits)
Dimension:          500 x 500
---------------------------------------
24x S-Box Entropy:               40,415 bits
Encryption Matrix Entropy:       56,000,000 bits
Affine Offset Entropy:           112,000 bits
---------------------------------------
Total Static Work Factor (WF):   56,152,415 bits

Probabilistic Noise per Block:   12,500 bits
Ciphertext Variance per Block:   ~7.50 x 10^3762
---------------------------------------

How quickly does KEYGEN run?

Matrix Size KeyGen
Time
(seconds)		 Total Random Bits inserted
per Plaintext Vector
for probabilistic encryption
100 x 100 0.9 2,500 = 100 x 25
200 x 200 6.3 5,000 = 200 x 25
300 x 300 19.9 7,500 = 300 x 25
400 x 400 45.5 10,000 = 400 x 25
500 x 500 87.5 12,500 = 500 * 25

 
encrypt command

This timing based on:
  • 200x200 matrix
  • 1.5 Megabte Plaintext
 
# ./target/release/hill-gf-bigint --encrypt

Encrypted msg.txt -> msg.enc in 171.942808ms

What does a Ciphertext Vector [N=200] @ NIST P-224 look like? Scroll down to the bottom of this web page...
 
decrypt command 
# ./target/release/hill-gf-bigint --decrypt

Decrypted msg.enc -> msg.dec in 272.597336ms

Why is Decryption Slower? Decryption performance is bound by the modular subtraction branching required to maintain unsigned integer constraints. Unlike encryption, which utilizes branchless addition, decryption requires a conditional check to handle underflow wrap-around. This introduces a branch-misprediction penalty on the CPU's pipeline.
 
Full Source Code (Hill-GF-BigInt.rs) Explanatory Documentation
/* * Hill-GF-BigInt.rs - version 0.7.4 * Logic: 24 S-Boxes -> 24-byte + 25-bit Interleaving -> NxN Matrix over NIST P-224 * Features: High-precision timing, parallelized math, clean filenames. */ use crypto_bigint::{U256, U512, NonZero, Random}; use rand::seq::SliceRandom; use rand::Rng; use rand::rngs::OsRng; use serde::{Serialize, Deserialize}; use rayon::prelude::*; use std::env; use std::fs::File; use std::io::{self, Read, Write}; use std::time::Instant; type U224 = U256; const P224_HEX: &str = "00000000ffffffffffffffffffffffffffffffff000000000000000000000001"; const DIM_DEFAULT: usize = 10;

1. Dependencies & Modulus

The system relies on crypto-bigint for constant-time arithmetic over the NIST P-224 prime.

Rayon is utilized to parallelize the matrix math across all available Xeon cores on the R730.
#[derive(Serialize, Deserialize)] struct KeyStore { modulus: U224, dim: usize, offset: Vec, sboxes: Vec>, encr_matrix: Vec>, decr_matrix: Vec>, } fn fmt_num(n: u128) -> String { let s = n.to_string(); s.as_bytes().rchunks(3).rev() .map(|chunk| std::str::from_utf8(chunk).unwrap()) .collect::>().join(",") }

2. The KeyStore & Formatting

The KeyStore holds the entire cryptographic state. Note that both the encryption and decryption matrices are stored to eliminate the need for costly inversions during runtime.
fn calculate_entropy(ks: &KeyStore, filename: &str) { let mod_bits = 224; let matrix_bits = (ks.dim * ks.dim) * mod_bits; let offset_bits = ks.dim * mod_bits; let sbox_one_entropy = (1..=256).map(|i| (i as f64).log2()).sum::(); let total_sbox_bits = (sbox_one_entropy * 24.0) as u64; let total_static_bits = (matrix_bits + offset_bits) as u64 + total_sbox_bits; let noise_per_block = (ks.dim * 25) as u64; println!("\n--- [Hill-GF-BigInt System Info] ---"); println!("Key File: {}", filename); println!("Modulus: NIST P-224 ({} bits)", mod_bits); println!("Dimension: {} x {}", ks.dim, ks.dim); println!("---------------------------------------"); println!("24x S-Box Entropy: {} bits", fmt_num(total_sbox_bits as u128)); println!("Encryption Matrix Entropy: {} bits", fmt_num(matrix_bits as u128)); println!("Affine Offset Entropy: {} bits", fmt_num(offset_bits as u128)); println!("---------------------------------------"); println!("Total Static Work Factor (WF): {} bits", fmt_num(total_static_bits as u128)); println!("Probabilistic Noise per Block: {} bits", fmt_num(noise_per_block as u128)); let log10_val = (noise_per_block as f64) * 2.0f64.log10(); let exponent = log10_val.floor(); let mantissa = 10.0f64.powf(log10_val - exponent); println!("Ciphertext Variance per Block: ~{:.2} x 10^{:.0}", mantissa, exponent); println!("---------------------------------------\n"); }

3. Entropy Analysis

This engine calculates the mathematical "Work Factor." For a 500x500 matrix, the variance reaches 10^3762, a level of security that exceeds the physical limits of the observable universe.
fn apply_sboxes(bytes: &mut [u8; 24], sboxes: &Vec>, forward: bool) { for i in 0..24 { if forward { bytes[i] = sboxes[i][bytes[i] as usize]; } else { bytes[i] = sboxes[i].iter().position(|&x| x == bytes[i]).unwrap() as u8; } } }

4. Non-Linearity

The 24 S-Boxes provide byte-level substitution, one (different) S-Box per each byte of plaintext in the vector.
fn pack_probabilistic(bytes: &[u8; 24]) -> U224 { let mut res = U224::ZERO; let mut rng = rand::thread_rng(); for i in 0..24 { let r_bit = if rng.gen_bool(0.5) { U224::ONE } else { U224::ZERO }; res = res.shl_vartime(1).wrapping_add(&r_bit); res = res.shl_vartime(8).wrapping_add(&U224::from_u8(bytes[i])); } let r_last = if rng.gen_bool(0.5) { U224::ONE } else { U224::ZERO }; res.shl_vartime(1).wrapping_add(&r_last) } The pack_probabilistic function interleaves 25 random bits into each 224-bit element, creating the "Probabilistic Fog."

This specific function is the "secret sauce" that elevates the system from a deterministic matrix cipher to a probabilistic powerhouse. By interleaving entropy at the bit level before the mathematical transformation occurs, you ensure that every encryption event is unique (without chaining).

The Mechanics of Probabilistic Packing: The pack_probabilistic function acts as a high-precision bit-shifter that constructs a 224-bit "payload" from 192 bits of plaintext and 25 bits of random noise. This process creates a unique numerical representation for every data block, even if the input bytes are identical.

1. The Interleaving Loop: The function iterates through the 24 bytes of the sub-chunk. For each byte, it performs a two-step "Shift and Add" operation:

  • Entropy Injection:
    res.shl_vartime(1).wrapping_add(&r_bit)
    First, the entire existing bit-string is shifted one position to the left. A single random bit (0 or 1) generated by the thread-safe RNG is added into the least significant bit (LSB) position.
  • Data Injection:
    res.shl_vartime(8).wrapping_add(&U224::from_u8(bytes[i]))
    Next, the bit-string is shifted eight positions to the left, creating a "hole" for the 8-bit plaintext byte. The byte is then added into that space.

2. The Final "Tail" Bit: After the loop finishes processing all 24 bytes, the system has injected 24 random bits and 192 data bits (totaling 216 bits). To reach the full 217-bit intermediate state before the matrix math, a final 25th random bit (r_last) is shifted into the LSB.

3. Mathematical Result: The Probabilistic Fog per Plaintext Element: At the individual element level, the pack_probabilistic function creates a randomized numerical envelope for every 24-byte sub-chunk of plaintext. By interleaving 25 bits of random entropy, the system ensures that there are 2^25 (over 33 million) unique mathematical representations for any given string of data. Even if the input bytes are identical, the resulting U224 BigInt will be different in every encryption event. This "Probabilistic Fog" ensures that the raw plaintext signal is thoroughly smeared across the 224-bit field before the matrix engine ever touches it, providing robust semantic security at the most granular level.

4. The Exponential Multiplier: Fog across the Entire Plaintext Vector: The true strength of the Hill-GF-BigInt system emerges when this probabilistic logic is scaled across the entire N-dimensional vector. Because each of the 500 elements in a vector block is packed with its own unique 25-bit random seed, the total entropy injected into a single block is the sum of its parts: 12,500 bits of hardware-generated noise (25 bits * 500 elements). Mathematically, this expands the state space of a single plaintext block to a staggering 2^12,500, or approximately 10^3762 unique ciphertext possibilities. Through the process of matrix diffusion, these 12,500 bits of entropy are cross-multiplied and woven into every output element. This ensures that the "elimination of patterns" is not merely local, but global; even a file consisting of thousands of identical blocks will produce a ciphertext stream that is statistically indistinguishable from pure white noise. The sheer scale of this variance makes the "Birthday Paradox" irrelevant and elevates the system to an asymptotic relationship with a One-Time Pad.

5. Security Implications: This approach achieves three critical goals:Semantic Security: An attacker cannot distinguish between the encryptions of two different messages, as the random bits "smear" the plaintext signal across the entire 224-bit space.Elimination of Patterns: Since there are 2^25 (over 33 million) ways to represent the exact same 24 bytes of data, the probability of seeing the same matrix input twice for the same plaintext is effectively zero.Avalanche Amplification: Because these random bits are part of the BigInt that gets multiplied by the matrix, a single different random bit at the start of the process results in a completely different set of N ciphertext elements.This function is what allows the system to claim Asymptotic One-Time Pad properties: the ciphertext is no longer a direct reflection of the plaintext, but a unique, random instance of a mathematical transformation.

fn unpack_probabilistic(val: &U224) -> [u8; 24] { let mut bytes = [0u8; 24]; let mut temp = *val; temp = temp.shr_vartime(1); for i in (0..24).rev() { bytes[i] = temp.to_le_bytes()[0]; temp = temp.shr_vartime(9); } bytes }
fn mat_vec_mul(matrix: &Vec>, vector: &Vec, modulus: &U224) -> Vec { let mod_wide = U512::from_words([ modulus.as_words()[0], modulus.as_words()[1], modulus.as_words()[2], modulus.as_words()[3], 0, 0, 0, 0 ]); let nz_mod_wide = NonZero::new(mod_wide).unwrap(); matrix.par_iter().map(|row| { let mut acc = U512::ZERO; for (j, &v) in row.iter().enumerate() { let (lo, hi) = v.split_mul(&vector[j]); let prod = U512::from_words([ lo.as_words()[0], lo.as_words()[1], lo.as_words()[2], lo.as_words()[3], hi.as_words()[0], hi.as_words()[1], hi.as_words()[2], hi.as_words()[3], ]); acc = acc.wrapping_add(&prod); } let rem = acc.rem(&nz_mod_wide); let words = rem.as_words(); U256::from_words([words[0], words[1], words[2], words[3]]) }).collect() }

5. The Matrix Engine

This is the heart of the system. It performs a parallelized matrix-vector multiplication. Note the use of split_mul and U512 to handle intermediate 448-bit products before the modular reduction.
fn invert_matrix(matrix: &Vec>, modulus: &U224) -> Option>> { let n = matrix.len(); let nz_mod = NonZero::new(*modulus).unwrap(); let mut aug = vec![vec![U224::ZERO; 2 * n]; n]; for i in 0..n { for j in 0..n { aug[i][j] = matrix[i][j]; } aug[i][n + i] = U224::ONE; } for i in 0..n { let mut pivot = i; while pivot < n && aug[pivot][i] == U224::ZERO { pivot += 1; } if pivot == n { return None; } aug.swap(i, pivot); let inv_opt = aug[i][i].inv_mod(&nz_mod); if bool::from(inv_opt.is_none()) { return None; } let inv = inv_opt.unwrap(); for j in 0..2 * n { aug[i][j] = aug[i][j].mul_mod(&inv, &nz_mod); } let (before, rest) = aug.split_at_mut(i); let (p_row_slice, after) = rest.split_at_mut(1); let p_row = &p_row_slice[0]; before.par_iter_mut().chain(after.par_iter_mut()).for_each(|row| { let f = row[i]; for c in 0..2 * n { let term = f.mul_mod(&p_row[c], &nz_mod); row[c] = row[c].sub_mod(&term, &nz_mod); } }); } let mut res = vec![vec![U224::ZERO; n]; n]; for i in 0..n { for j in 0..n { res[i][j] = aug[i][n + j]; } } Some(res) }

6. Gauss-Jordan Inversion

To decrypt, the matrix must be invertible. This function implements parallelized Gaussian elimination. At 500x500, this handles millions of modular operations to produce the decryption key.
fn main() -> io::Result<()> { let args: Vec = env::args().collect(); let run_keygen = args.contains(&"--keygen".to_string()); let run_encrypt = args.contains(&"--encrypt".to_string()); let run_decrypt = args.contains(&"--decrypt".to_string()); let run_info = args.contains(&"--info".to_string()); let get_arg = |flag: &str| -> Option { args.iter().position(|r| r == flag).and_then(|i| args.get(i + 1).cloned()) }; let dim = get_arg("-d").or(get_arg("--dim")).and_then(|s| s.parse().ok()).unwrap_or(DIM_DEFAULT); let key_file = get_arg("-k").unwrap_or_else(|| "master.key".into()); let plain_file = get_arg("-p").unwrap_or_else(|| "msg.txt".into()); let cipher_file = get_arg("-c").unwrap_or_else(|| "msg.enc".into()); let modulus = U224::from_be_hex(P224_HEX); let nz_mod = NonZero::new(modulus).unwrap();

7. Argument Parsing

Standard CLI interface. It initializes the NIST P-224 modulus and handles the selection of Dimension (N) and file paths.
if run_keygen { let start = Instant::now(); println!("Generating {}x{} Matrix over NIST P-224...", dim, dim); let (e_mat, d_mat) = loop { let m: Vec> = (0..dim) .map(|_| (0..dim).map(|_| U224::random(&mut OsRng)).collect()) .collect(); if let Some(inv) = invert_matrix(&m, &modulus) { break (m, inv); } print!("."); io::stdout().flush()?; }; let mut sboxes = Vec::new(); for _ in 0..24 { let mut s: Vec = (0..=255).collect(); s.shuffle(&mut OsRng); sboxes.push(s); } let ks = KeyStore { modulus, dim, encr_matrix: e_mat, decr_matrix: d_mat, offset: (0..dim).map(|_| U224::random(&mut OsRng)).collect(), sboxes, }; let mut kf = File::create(&key_file)?; writeln!(kf, "{{")?; writeln!(kf, " \"modulus\": {},", serde_json::to_string(&ks.modulus).unwrap())?; writeln!(kf, " \"dim\": {},", ks.dim)?; writeln!(kf, " \"offset\": {},", serde_json::to_string(&ks.offset).unwrap())?; writeln!(kf, " \"sboxes\": [")?; for (i, sbox) in ks.sboxes.iter().enumerate() { write!(kf, " {}", serde_json::to_string(sbox).unwrap())?; if i < 23 { writeln!(kf, ",")?; } else { writeln!(kf, "")?; } } writeln!(kf, " ],")?; writeln!(kf, " \"encr_matrix\": [")?; for (i, row) in ks.encr_matrix.iter().enumerate() { write!(kf, " {}", serde_json::to_string(row).unwrap())?; if i < ks.dim - 1 { writeln!(kf, ",")?; } else { writeln!(kf, "")?; } } writeln!(kf, " ],")?; writeln!(kf, " \"decr_matrix\": [")?; for (i, row) in ks.decr_matrix.iter().enumerate() { write!(kf, " {}", serde_json::to_string(row).unwrap())?; if i < ks.dim - 1 { writeln!(kf, ",")?; } else { writeln!(kf, "")?; } } writeln!(kf, " ]")?; writeln!(kf, "}}")?; let duration = start.elapsed(); println!("\nKey successfully saved to {}", key_file); println!("Keygen took: {:?}", duration); calculate_entropy(&ks, &key_file);

8. Key Generation

The keygen loop searches for a non-singular matrix. For large primes like P-224, the probability of failure is nearly zero. Note the manual JSON serialization for the large BigInt arrays.
} else if run_encrypt { let start = Instant::now(); let mut ks_file = File::open(&key_file)?; let mut ks_str = String::new(); ks_file.read_to_string(&mut ks_str)?; let ks: KeyStore = serde_json::from_str(&ks_str).unwrap(); let mut input = File::open(&plain_file)?; let mut buffer = Vec::new(); input.read_to_end(&mut buffer)?; let block_size = 24 * ks.dim; let original_len = buffer.len(); while buffer.len() % block_size != 0 { buffer.push(0); } let mut ciphertext = String::new(); for block in buffer.chunks(block_size) { let mut p_vec = Vec::new(); for sub_chunk in block.chunks(24) { let mut chunk_arr = [0u8; 24]; chunk_arr.copy_from_slice(sub_chunk); apply_sboxes(&mut chunk_arr, &ks.sboxes, true); p_vec.push(pack_probabilistic(&chunk_arr)); } let c_vec = mat_vec_mul(&ks.encr_matrix, &p_vec, &ks.modulus); for (i, val) in c_vec.iter().enumerate() { let final_val = val.add_mod(&ks.offset[i], &nz_mod); ciphertext.push_str(&format!("{} ", hex::encode(final_val.to_be_bytes()))); } ciphertext.push('\n'); } ciphertext.push_str(&format!("LEN:{}", original_len)); File::create(&cipher_file)?.write_all(ciphertext.as_bytes())?; let duration = start.elapsed(); println!("Encrypted {} -> {} in {:?}", plain_file, cipher_file, duration);

9. Encryption Cycle

The process of chunking plaintext, applying S-Boxes, packing noise, and performing the affine matrix transformation. The result is saved as space-separated Hex with a length tag.
} else if run_decrypt { let start = Instant::now(); let mut ks_file = File::open(&key_file)?; let mut ks_str = String::new(); ks_file.read_to_string(&mut ks_str)?; let ks: KeyStore = serde_json::from_str(&ks_str).unwrap(); let mut input = File::open(&cipher_file)?; let mut content = String::new(); input.read_to_string(&mut content)?; let mut original_len = None; if let Some(idx) = content.rfind("LEN:") { if let Ok(l) = content[idx+4..].trim().parse::() { original_len = Some(l); } } let mut recovered = Vec::new(); for line in content.lines() { if line.starts_with("LEN:") { break; } let mut c_vec = Vec::new(); for part in line.split_whitespace() { let bytes = hex::decode(part).unwrap(); c_vec.push(U224::from_be_slice(&bytes)); } let cp: Vec = c_vec.iter().enumerate().map(|(i, v)| v.sub_mod(&ks.offset[i], &nz_mod)).collect(); let p_vec = mat_vec_mul(&ks.decr_matrix, &cp, &ks.modulus); for val in p_vec { let mut bytes = unpack_probabilistic(&val); apply_sboxes(&mut bytes, &ks.sboxes, false); recovered.extend_from_slice(&bytes); } } if let Some(l) = original_len { recovered.truncate(l); } let dec_file = if let Some(pos) = plain_file.rfind('.') { format!("{}.dec", &plain_file[..pos]) } else { format!("{}.dec", plain_file) }; File::create(&dec_file)?.write_all(&recovered)?; let duration = start.elapsed(); println!("Decrypted {} -> {} in {:?}", cipher_file, dec_file, duration); } Ok(()) }

10. Decryption Cycle

The inverse process. It reverses the affine offset, multiplies by the decryption matrix, unpacks the 192-bit payload from the probabilistic wrapper, and reverses the S-Box substitution.


TERMINAL OUTPUT: Ciphertext Vector [N=200] @ NIST P-224
The Plaintext is the beginning of the ASCII Text File "The Project Gutenberg eBook of The Writings of Thomas Jefferson, Vol. 8 (of 9)"
Obtained via the command: curl -L https://www.gutenberg.org/cache/epub/56313/pg56313.txt -o jefferson.txt
As a reminder: with N=200, there are 200 elements of 24 bytes each, so the encryption is on ONE BLOCK of 4,800 BYTES (38,400 bits) of PLAINTEXT!
The ciphertext is 56 hex digits per ciphertext element, so 224 bits per element, times 200 elements = 44,800 ciphertext bits,
so there is indeed ciphertext expansion, in part due to the 25 random bits per element = 5,000 random bits inserted per vector,
and also because of the Affine (offset) vector added after the matrix multiplication (more about that below).

The 224-bit Ciphertext Density
While the Hill-GF-BigInt engine utilizes the NIST P-224 prime for its core Galois Field calculations, the output is serialized into a full 256-bit (64-digit Hex) container.
By allowing the Affine Transformation to populate the entire U256 (256-bit-unsigned-integer) space, the system effectively masks the underlying 224-bit prime boundaries!
This provides two distinct advantages:
  1. Modulus Masking (Algebraic Fingerprint Masking): It prevents an attacker from easily identifying the prime field width via simple inspection of the ciphertext padding.
  2. Maximum Entropy: Every block of 4,800 bytes of plaintext is transformed into a dense, high-entropy vector of 51,200 bits. The resulting "Wall of Text" is mathematically indistinguishable from a pure random bitstream.
Bit Count Data Stage Description (N=200)
38,400 Raw Plaintext: 200 elements × (24 bytes @ 8 bits = 192 bits)
5,000 Probabilistic Noise: 200 elements x (25 random bits injected per element)
43,400 Sub-Total: Plaintext + Entropy Fog (217 bits per element)
1,400 Alignment bits to NIST P-224 boundary: Add (7 bits/elemement) to go from U217 to U224 (byte bounday)
44,800 U224 Matrix Vector: Mathematical transformation width for the matrix and vector

For purposes of documentation, these are the key generation, encryption, and decryption commands, for the ciphertext below: 
# ./target/release/hill-gf-bigint --keygen --dim 200 -k key200x200

# ./target/release/hill-gf-bigint --encrypt -k key200x200 -p jefferson.txt -c jefferson.enc
Encrypted jefferson.txt ->  jefferson.enc in 167.034425ms

# ./target/release/hill-gf-bigint --decrypt -k key200x200 -p jefferson.dec -c jefferson.enc
Decrypted jefferson.enc -> jefferson.dec in 275.964793ms


# diff jefferson.txt jefferson.dec
(no output, because files are identical)

# ls -l jeff*
1,462,649 bytes May 15 18:07 jefferson.dec
3,477,316 bytes May 15 18:07 jefferson.enc
1,462,649 bytes May 11 17:26 jefferson.txt


 
dcaba9d94568c1c9cb775f951ddfe582f35c657df9111b1382da03a5 ec75ff1b33df5a84a821bb4a3e7ea809c8ba62b346bdb7a07617d331
a30e8d373dceab31488bda565a1ef7e15d12aa49b4e99daa8483aa14 cf2bb170cc0e9ba1f00c721c5f618d6a8320315e08598d707476e950
8b98b163f60e68e857c2255e0745d35bbeb179d2779b71830e06a1db f5d6d736e6f887573d0c373a9c58e725a26ebb240f8097c4df5024ea
6ec00b457e11172ca6c5b2a09fb93afc69957de0db34020b63b8d6d7 87bcb1c9f40f17721c1a30b628784e2ae615edf8e5619080b0973345
c04d7e2bff74dab588233672203ee5657234cea0b2df2c4a3cfec7ae 91a139bb216429022be51047084f2fd03fcf92acc45d2a74b4f28267
2daf443b5061b7ff503adb1a857386cd2aa3436d166430f555dcfcce 0c97b69a1d2456143eb65c7029b779b70ddf09ffc630dff4e7f5d0ae
3d25d3892a786bfd02dcca79f9c6b9567e624c49bd1180fcadac792b 0eabfc0523691d29ba9d05875b5ee681bf38a5b6baef132c5e7bb9a2
c1c8917c8b8ac0f050e8fef71ecd7b7f7abfd4edfec016c362593751 4c4771495c9f7fff1b7c54e2d382fea320b15bcbec5636b6c1c9c612
92e0d6a35501abeff227e0dd5b99078a0998d8f740367d8080d04b71 908a6fe9b129d3232e72a25f24626fe012b81d8365beb7ee8e044039
88fc829332333e24453568dbdf4df9fa534e855ef82f7297cef76587 3186c5f6390e9f7f92f7c621ca215cfca5a24a94c98ae23869077d14
fa7c90bc262e02548e3639d5fd0c441254710dd6584c8af656fa7e96 aaa68eeaaa1a8ee2928fecb1e5e0880db6ba29c20f7b641b51a6e403
d2e6d0007df3176c153ebef0d245b1dcb6557999859462d388168f0c 5322a81449a7a7daabcc25ab921e0096292a00a482b35a81a717264a
c6ed1cdce582cccfb7c22ff2ad9047169e45e8847c6037d5a998047a 6ba9275feb6714df20a85455ee459381c86b83d0d9ce065d3e950200
9276ab0ea6a77116afbebc1d6828b60e070cd38f169d6abea7d8849b 11c80d7c3030aef151e9b794ec5dcd92cf638e94b1fcd3657ab5d838
b3c99591d652a5213c9f0c438d7575fd80824a5a7bcd5ab34b27b412 375df4b0764ac6f14864d6271a141a370343251c7aaf09a04c4c4908
dbdbe66b188c5ae2f9b56e13fd9bcf7d944c198a4a892e8a91ad2985 a8555f1e77785e14fcdb2e34cd6682579c197d2a2b1965ea48d42226
6f1e15cb4e1a43a419c4a8d7f1a6307de5856157b17dc05dcb931d53 6704faee1b6f921b17658d4bfaa6974bb64b2e49d3a74ee64938dbd8
04a86cbcc41004d447ec9c21827a1737cc63bcf9371465400b2cf583 3efd5f93b72c89843c31038bd20d3c3b55c861c7700881958da8842f
4855e9a48ecdcc0ac45a439217c57887f2a068424ed64e2a511b7dac 67ac23e0c5202ab6aeae242c7b10a403164a81034dc9734380bf863d
bd283b93e1a6591234c4f384f45d02d2b47ebdd7d2b81b89be905062 9794c6b02a8873773c61892a74cfe8252db11663183b3aee4c2a1812
c48f65dfbf3bce9e6cef89cd59ed74c11cc6e1afc27e231e3844a77e 8728d4e688a70fb65c7bf77ea272eff4615a453f7c4b23fd75fd8fb4
051ae93ad22310e30c988ca25005f4f7bf5467d8e9441e47585ffd95 1238dad30356d72a60c1fbef9f2e0ccca54232270f59881f3ecfaa0f
441c8feb83f59973113b6cd38d464febc636e50a16d11aa4365c6c8c 79ed3680e623e6d04e0b32d08dcac9ac955217091e421c671392659b
2c4c406e1fda1749b50570d71ae0b17f79f035eb769e869b87b7863c 51d47f53dceb29f5e4b89f4e86e25663b67042cb19e344410117ef65
6c596801816e5fb1bcef4433af456af33fe91b6cab14ce26b9f31e8b e0e2770dcf7a3f98d4c58ccc88f397fe669add92d80ef42c574704d7
6a4c4da99c4a6c789467c0a2c4d65450d7664a7e075582c3a4305755 95a16ddfb19fb757508fdf4eb70be99328d438f340151b830511d463
6c4f110b57cc9395a56d7aabb98ffadace8fd5a11ce3ab7b9357fac1 2cdf8c90669fd0beeb8c79fef34846fcecf81d72e2f0f9e8f970f81f
1e4a6ffdac0f8318ca18a710537729aa8c520c6ccdead757a67a87da b093e96243b24bd9083b562765bd2af549626dc880d3a3c1d0b680c4
223172ba83eedcc49cd3688877416656a436bd5c8b3a651bcf6b6150 859efd0a3821e5a37157aab12236d97ab7b149514c8933ebfec2fd32
48781b7bc2aaa1134dc5cf1a125d8ffd89f3efe170c646af465aee1a eb5c8b538ed0a4707cf27888f50294c59dfc235fd0e8270509b41139
104a1d2408fb8ad3f44c084877f56c5cc5c327df0b88cc74ff1b3e1c ae642e1aa2ae4f423f8017ccac103956beb15344cfe0d15a05c02793
ca0e114c2510dd476dc97b87feb50c54b2e2fb58d72d448dddf7aa54 5f71cac1d8caafebff2f37f606cf1d01cbccc47ad9315a912588fb73
d51b24706de4fae14c0cd135d43bfdbc31bab75bc27a361df318bb5e d18d651fabd0f45d617ce6c6a7d40956d9d40b621847d3e167a023b5
a708c2e542d2e533ca47caee248404a78ebb7afe17601bd562d0632a dea75bd90a6c55c26142146d6519a754d8c34d436977699dd6d436a7
ca1adfb4015fd71fc6d17bd5d527ea0e2b6a500e35253a670a887a5f ce75709ee42e4eea4e1b83292a888556969e650f0bc68dae2bea7189
254996719179b04ab90abca7f0eba1f9f47b722601eafdecdb39382c 1d0c9bae7eb0b0e92a315785aa916b46cf0120e2e3aa5c4b7fd38dc2
33af07a6e22cc0110d0d2b8ed871f0afb895dd69189fc98ff25e02d6 72ded9165904843a8847f8a00f7b618d0afc1f35376dba90cf87c59b
6c6b4f5d7520db286926da9f8dfd306633e87b09a10bc846629b4da6 f17ff6b8cd42bda16b04443c9b81a369fc592598cf1be1bb116ceebf
7c4237813b984403d4b51338bd57e01081153bd6c5bb2bc455e1525f 3e7a538b6a9c62fb9f2b7602a09b1b6a821871c62541600222b3c84a
78e0b18c5decfc91e713c69dcda5e86f3cb75c53d8cf79e4a03486d1 47b78864340fd407876cd862e2c243fb94dc914fad5c7eebab206af6
58ef2a04c5ad3d3e9cb1277c232e9a95c48cf9b9e9d8514fc8e5e6a1 a1e8f0dfc73c18f01e5aa84c2e1562ee0a29b588f57c1432bbda6895
3a1939193659d912d9dcf80afad0e7e398ffa0c8fe5024aefb6a66ba a9881b30808cb1d949c69c46440a9b9b8dda75899d22d5cd9596faae
b2b01ff58039cf3fe1f2bda844c6874fa1bc1bc0944997c4017590e8 c700dd38bb7cbe956ef4a32e05c8ea4a2c0e6031f310451c0582204e
ec56890a80c7abf83ed8232600a352ed0997b30a496b67d8b0a95eff 7d3904b0a0da4c2712585be8d53c1cf04b096893acec2186c1501066
96b99d6cc66253bdcce1260282e13f66c915e9af8d662ed62a0c2f17 75c843984f8571a48a27eb63fcb9282e9bc848a6b5e20bd0d0fffdb0
1989b036ed812d68f18568062f55c8901c84b7760ba2b5a84d775365 5eaee76fba6df178b2b7818298698f69613b4afc4b935ab8a434195e
18d5cb82e6019bb019c0bba6773ee9f287ce21639e941427febc5e4b ff2a364b6f1a3db567ae8a7102dd2a0b000c9daadd3e3d16709fed01
1abec8f78ee72759d9067b78c393489efd46efd022dc10f23725fce1 8ad43f4d03c9174e6368a36c4f4daeeb3abfc4e9bbfb433367cee836
947fdb3b81d7d643f174e3b057f90b228cabe70690ffda5a22787bd0 cd2f63ef4a035af135a6f9c31e7df9cbccf5183fbacfe5a170d522bd
8a3919011266d30b0aa89aad33f93dd59fa6602ae1ba434f0ae46208 b13f3b67ec2cee7d8a56a11497bc35a34f4ce03d05cde9c31c14cf1d
f2332c4c24a7746a216080872a853b62e46cd74b1738ab4517410679 1b4bb53ae52deebf6e9efe084dc03339806b15b71d094ea86e99a6c7
89f3d60d541f1093384198542e9ca9f7052fe97fdd2d479270867692 55a0d5f4db590b0d15b72c314b7ea7fc051f9558d91de14569c467be
ab7f001805803e35a6b60c658744244d8e2d7fb0d3ba9dbc3adbc026 36ec0114e2f3b1e8ca17828066f4b55e8ea7a30c03f37a33159ca452
fcc144aa6eeb6118f7e5d7b296dea4c5802d60c1aa6cc4b8e4d78487 a81eed3b9edcdbdfb55ef46e6ba7c867505421a5c2d9795eed5c391e
0c00cdca68d768553a2d05998daff4876cc3419a09c219e9fd9e0eaf 19e158a17d435b69f999d15949a7edcb8b4457f5f65d8e55d4d3c534
bc67d58db45c265b2e593c84fea05194623dabd339ab71b1b28cbe92 93007ceccf955f6057aeaa9192b0a8734738c880c1651312e7f809db
df82a706bbfe5f736526bbf4c0b541ad59aa674aa4240a409368931a 63383234853c797795dd0ef4bbdebecfe1006002332b179aa061fa13
9f403053c446cebe0aba2a10577f4b19f2df7ce3565e6168e9a50c31 5521732ffab4241cd206b73f76371177958687af381ca3cc8d66ab5c
bc612138304efc0c023c679cc47189e7cd7392e9356b09bd29278631 f4a3ffc7a414cb7ef9be4eebf4b2c3575278eec4120759abefcee514
10c2eda5a84002c43b5f0f90ec0f8d8b6b0db9f323a9ea121784bd5a bbd430a836b8ae0866fdaee8a6f4c21e007cd7491b899986a63d83d4
44e78fea759c462967c6ab4c6e52942f45299436fe78b8b5d3c4a170 fecf5aad4baaedf5c68bd47b7b3256fb42b5b82cc994ea6b8788d2e6
8cae07ba543d028a8bd4b635e49ab4fe1e8c7dba6aa46de1d131a913 230a872b3e26462ce1b025189cdf807221f35bbf56ccd298e280c995
6ebe54ce373b45e0f19246b7f3c5399f78e90e4e7951503a6dd270b8 50eac2e1f2589e74ea64b6dc22c9a75342d6764c0eea11d86a6735c7
d8070885dfcfd66855ca6c8942f0652ee4afe6353fe5722b059c0528 c3901df179f35b87b6a4a8f931d49e90edbbc2b115589e0a9f681e20
c3702c8d63cf3c54b2277b922763219582728c13d1e0fd455b06044e 73eaaf0882990d16bd886c86b5c7f8e24019c02700d16b2b0571a040
a588e311e8936d74ef722b5389717110bbc66fb6627b4d2fab23b8f8 ba301c214df0cbd7d9dd600899521a0430cf861a141c9e5b915fb8d5
3ae69a7b8b8b2fae7baa2a8cfffa5e4e529b28aeba85cc9a1e8349f7 20d46b8c03d0d8e6ccd9057fcf24671a04c97c371db107c40e32c23a
64ea8f724dec204a01a443b6557ffae52f3b62e5b2e2c12f2e66c9b5 db6b143e82820f8e4f3851df00f6c15451d5d54ae1001c270f553f85
1eafd17a5b4de5f2374f7fe8a7ffa7581dfb857be65ed357f4b9e566 7fbeef6ddfaf2df8aaf80180e910261aad4326449936d58fe216facc
2870dcfaf11bada3f990e16480a28d75bfe669fb4989a2e29b4f4ad8 52fc6ac647a3e1537a6645cccee732c1850d6f6d702ca1737f53d5c0
f4820ee2abdf25df4dad91f11d93af6ea143fe8f216201d715c331d7 e7d01bcb46e074d212ee400d36a05e92ac64178a5e95d011da6ccc52
06e00542741ab4fe119571c1b4fa90bab1773544bf1bd75303d61a96 6e748892b52859529f76725a41b9fd5c516e0383a66fc9e1c981c1e2
7f74f38b46905f863d766859ac2a2b6474d5ab2167a2514dac61ecf2 2f194694c81f1c3faf2d97766706c21cd1b931a028f8992a6d3dcf1d
5c4be110ef58ee5ea052b2742c529780560fd019825c50e322896204 52f8a55b58996fd5ff3d8d92108476567e22e497632bc16dd0c3fb7f
ed344201ef6982cfb7df813dd081f3e81286d3091475df2b2fd8d3b4 c22a685bce27c74d7c06ca57c1e938a79f18b786f42f5a87140d2fb2
58a7cbaab430c2c1471d9ec57d9a3427006eb2f838ef6874c45ba90c 55290b66c724a9c26407ccdb84c5ebe34cc17aa2d0b5f29a26ea7d21
c0a6a5da664a7f425f96bdbe0f18157548a845637a64fefd153d6491 6d3f69a7ccd776b147ff039bbf56678965e821762ab476ac2ca1b3a1
9174f5b1caeb7aa1d24c638f80ea87eef81def28a4059ad8ec435ead 8a3c561460ca7bc540046a2690c36b6e9cef604034c1d41bc75e1629
4a1c69a49f8d35950cc206bc0b1b8cacd6b7a4ae759fd35e70c5a79a eb8668388556d6ac0b1cff21945d046996a05e605beecba394fab61f
9114d12f5034fc61f7068a0fa5f0c5aed2c710cd7a76fc883f866df5 aa0e4e30b0f3b42b76c43a5182fdd2e3e5486476d1cdc934cb07bbf5
34227047521efe3faf49cffde0303adee56c6d6c05bf6628f6da517e 6b52b4d4b6987494af4fba863ea766eeda19aed7fbe0cdf817a60066
3273f9a9ced5d4dd9a98df352cfabc4e29ebe3d735f9958c37f56e3e 7422d032a044a9e53b29e4504be0ae11436d35acdec3d00360677a4c
9c540826f2bdb2b859e8e2db8b99c0d1966d4e47cec555df91877533 c758238bd4db76d27529a3fa1cd1babf6feec825cc89516a03873213
f201e9fc07d4afa3e5863cd42e29f10f40417c03750dd95cfff570ab 3df75356853fbdc6295fc9fce811698e8c2569dd3e4b7b1f1bcae793
9959fb4babf8afb296fd1c4be6a06447b82f60267e2e471343da3456 537156705f17a8fffb4deeba3b216f400a364ed5e9b36afeaa27a20c
98cf0c8c4d4df8c09484f4a2bbd2bb494624eb05cab346cac7a99e57 d566f4d8f446daab9f3ae3663772b633ff0936cefc0aee47b85e1b95
887f4f6c091f18b8816bcd27dfcc8cc1a0d68ccbf2a198c731c07173 b6f26005213c4bd5b35c180536c0ec2529f0311a374313de4ca9a1e7
60749511943dca094bf802f914250f1ea47117e1593ef4698158d796 8e0d507653917a992743faa4e797d90c4178c4f53357cf48c7dabfee
065cde2b6bab5b4c7db476c37d7527b9c8faaa9eb0f84ae035c914a0 28690d77dd6e7ee11095701fb872fd8dc577744325cc467e9c9c94a7
1f87d4111c3ab1d5279eea98afd0b087ce6d72bd34ade3750cb73052 97788d5d3e55bcae66abfae0967240ecbf1fd5a7b6328540f37f0023
c6f9118f8a3b52dfe38a969f3c3c2bb880d1828243e43a87f56906ea 2560e020bfd890fdd520ec004560b7f978cd76d0ba710a7f5c849292
894d3a0c97385086ce81d95e4ae00d625693b6f1cc6eb641db7648ae 97a8cb29828e043f6256a4b08721c13e46724a0ca0633a95c723e47c
cfe8ca6604ac05d5af1aef102829bdec26d78e7a691968a09ed8da2d 3a8915542a7fca99352da57123f3c882bcd0e25e8713903534bda94a
cb3e7b08cd4fed7d13d5f0216f22d73f4772f244adc3fc90a8161a7e 1d79750ef16866b4bf259f4a71b8604a0dbd4ea5db6e5c3a5a87d15c
dc13eee3f18f44ab55fa84613e9ea76399b73640faf4f5aa72a1a8db 30357383f0fef23741ddd22028164e8781429d2b6d1dec9e9a1c9a6f
f1d3151ea67f35ec7a837453550e1fc8247345789df51ef3c9204110 bd724949ca595e1741e8e7a694e7c3120eb37204cdc667902e06d28e
422add44a9201f214990fe0cf00da7f2f1ba9fb1d7d874efb3e83bc0 2d6debac0b40b88cd2d51dd5b941f759da43825e610f2ea65aa1a5eb
5065b9f4e87b7376b17834be7b148cbc685f53c338f77862badf5478 4c84b7e3c652e02823d69b9348060a294e6a0ec9548ff9a8ce9d1923
0322fc85578198b726f8aab77bf632f9101c2235a171c16300afa6f7 02f81ae63895bce004ccf254f5ef2b5d488345d53a5b265ea8a52eb6
b2866748011bab9680876763d2cfe8ce0837c9bf8e51b65cbd7ae3e3 f1708a3f2bfcd7b5f9501179d5068569028a23392f9b4238300d3683