The Role of AddRoundKey in AES
AddRoundKey is the only transformation in AES that directly uses the secret key material. It combines the current state matrix with a sixteen-byte round key using bitwise exclusive-or. Every bit of the state is flipped or left unchanged depending on the corresponding bit in the key. This simple operation ensures that the entire encryption process depends on the key from the very first step.
In a full AES-128 encryption, the same key is not reused for every round. Instead, a key expansion algorithm generates eleven distinct round keys from the original 128-bit cipher key. The visualizer simplifies this by using the same sixteen-byte key for both the initial and final AddRoundKey operations within one round. This choice lets users focus purely on the round transformations without needing to understand key scheduling yet.
What Happens During AddRoundKey
The state is a four-by-four array of bytes. The round key is also arranged as a four-by-four matrix in column-major order. Exclusive-or is applied position by position. If the state byte and key byte are identical, the result is zero. If they differ in any bit, that bit flips in the output. Because exclusive-or is its own inverse, applying the same key twice returns the original value, which is why decryption can reuse the same round keys in reverse order.
The visualizer shows the state before and after each AddRoundKey. The initial application often produces a matrix that looks random even when the plaintext is structured. This immediate mixing is intentional: it prevents attackers from isolating the effect of later transformations from the key.
Why Two AddRoundKey Operations per Round
The first AddRoundKey prepares the state for the nonlinear and diffusion steps. Without it, an attacker could more easily analyze the effect of SubBytes and MixColumns in isolation. The final AddRoundKey ensures that the round output remains fully dependent on the key even after diffusion has spread changes widely.
Observing both steps in the tool reveals how the key acts as a mask that changes with each round in a real cipher. Try entering structured plaintext like all zeros or repeating patterns and watch how the initial exclusive-or creates apparent randomness that the subsequent transformations then further scramble.
AddRoundKey may seem trivial compared to MixColumns or SubBytes, but its strategic placement is what makes the entire round key-dependent and secure. Mastering this step is key to appreciating the elegance of the AES design.