RSA communication between Javascript and Python

后端 未结 2 1711
独厮守ぢ
独厮守ぢ 2021-01-22 20:21

I am working on a prototype, so it needs to use RSA between a Chrome Extension and a Python Server.

So far I was planning on using https://sourceforge.net/projects/pidc

2条回答
  •  一个人的身影
    2021-01-22 21:12

    The Javascript library (pidCrypt) uses PKCS#1 v1.5 for RSA encryption, not OAEP.

    That is supported by PyCrypto (see here). This is the example for encryption:

    from Crypto.Cipher import PKCS1_v1_5
    from Crypto.PublicKey import RSA
    from Crypto.Hash import SHA
    
    message = 'To be encrypted'
    h = SHA.new(message)
    
    key = RSA.importKey(open('pubkey.der').read())
    cipher = PKCS1_v1_5.new(key)
    ciphertext = cipher.encrypt(message+h.digest())
    

    And decryption:

    from Crypto.Hash import SHA
    from Crypto import Random
    
    key = RSA.importKey(open('privkey.der').read())
    
    dsize = SHA.digest_size
    sentinel = Random.new().read(15+dsize)      # Let's assume that average data length is 15
    
    cipher = PKCS1_v1_5.new(key)
    message = cipher.decrypt(ciphertext, sentinel)
    
    digest = SHA.new(message[:-dsize]).digest()
    if digest==message[-dsize:]:                # Note how we DO NOT look for the sentinel
         print "Encryption was correct."
    else:
         print "Encryption was not correct."
    

    Note that PKCS#1 v1.5 encryption scheme is know to be badly broken.

提交回复
热议问题