KanaShift — Local Demo (KAN500K2 generation)

KanaShift is a keyed obfuscation scheme that applies polyalphabetic, class-preserving rotations driven by a PBKDF2-derived keystream. Default config uses 500,000 PBKDF2 iterations (hence “500K”).

V2: outputs include a per-message nonce (so reusing the same password across messages won’t reuse the same keystream). T verification uses a PBKDF2-derived HMAC key (no fast password oracle).
Stealth: no repeating separators; framing is parsed by fixed slicing.

Mode

KAN500K2 Latin→kana skin (uppercase preserved via katakana sets). KAN500K2JP JP→JP (hiragana/katakana/kanji preserved; ASCII shifted too). T token verification (decode returns OK/FAILED).

Token check chars (T)

Higher = lower chance of “false OK” with wrong password.

Punctuation hide (optional) Reversible keyed shifting of JP punctuation glyphs (does not move punctuation positions).

Input (plaintext or obfuscated)

Password

PBKDF2 iterations

Salt

Output

Tip: Encode writes to Output. Decode reads from Input. T modes can verify wrong parameters.

About the KAN500K2 framing

Stealth framing: ciphertext has no fixed separators. Format is: <HDR4><NONCE16><PAYLOAD...> where HDR4 is 3 bytes encoded to 4 kana64 chars, and nonce is 12 bytes encoded to 16 kana64 chars. Parsing is done by slicing.

KanaShift — Offline Demo (KAN500K2)

About the KAN500K2 framing