AES encryption using Java and decryption using Javascript
I am making an application which needs Java based AES Encryption and JavaScript based decryption. I am using the following code for encryption as a basic form.
p
-
For Java and JavaScript to able to inter operate, it is essential that no defaults are used while creating Key or the Cipher. The iteration count, key length, padding, salt and IV should all be the same.
Reference: https://github.com/mpetersen/aes-example
Sample code below:
Encrypting String in Java:
String keyValue = "Abcdefghijklmnop"; SecretKeyFactory factory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA1"); KeySpec spec = new PBEKeySpec(keyValue.toCharArray(), hex("dc0da04af8fee58593442bf834b30739"), 1000, 128); Key key = new SecretKeySpec(factory.generateSecret(spec).getEncoded(), "AES"); Cipher c = Cipher.getInstance(“AES/CBC/PKCS5Padding”); c.init(Cipher.ENCRYPT_MODE, key, new IvParameterSpec(hex("dc0da04af8fee58593442bf834b30739"))); byte[] encVal = c.doFinal("The Quick Brown Fox Jumped over the moon".getBytes()); String base64EncodedEncryptedData = new String(Base64.encodeBase64(encVal)); System.out.println(base64EncodedEncryptedData);}
Decrypting the same string in JavaScript:
var iterationCount = 1000; var keySize = 128; var encryptionKey ="Abcdefghijklmnop"; var dataToDecrypt = "2DZqzpXzmCsKj4lfQY4d/exg9GAyyj0hVK97kPw5ZxMFs3jQiEQ6LLvUsBLdkA80" //The base64 encoded string output from Java; var iv = "dc0da04af8fee58593442bf834b30739" var salt = "dc0da04af8fee58593442bf834b30739" var aesUtil = new AesUtil(keySize, iterationCount); var plaintext = aesUtil.decrypt(salt, iv, encryptionKey, dataToDecrypt); console.log(plaintext); **//AESUtil - Utility class for CryptoJS** var AesUtil = function(keySize, iterationCount) { this.keySize = keySize / 32; this.iterationCount = iterationCount; }; AesUtil.prototype.generateKey = function(salt, passPhrase) { var key = CryptoJS.PBKDF2(passPhrase, CryptoJS.enc.Hex.parse(salt), { keySize: this.keySize, iterations: this.iterationCount }); return key; } AesUtil.prototype.decrypt = function(salt, iv, passPhrase, cipherText) { var key = this.generateKey(salt, passPhrase); var cipherParams = CryptoJS.lib.CipherParams.create({ ciphertext: CryptoJS.enc.Base64.parse(cipherText) }); var decrypted = CryptoJS.AES.decrypt(cipherParams,key, { iv: CryptoJS.enc.Hex.parse(iv) }); return decrypted.toString(CryptoJS.enc.Utf8); } }讨论(0) -
Your Java code uses the 128-bit AES key while your JavaScript code uses the 256-bit AES key.
Your Java code uses the "Abcdefghijklmnop".getBytes() as the actual key value, while your JavaScript code uses the "Abcdefghijklmnop" as the passphrase from which the actual key is derived.
The default transformation for Java AES is AES/ECB/PKCS5Padding, while default transformation for CryptoJS is AES/CBC/PKCS7Padding.
One way to fix your example is to fix the JavaScript side:
// this is Base64 representation of the Java counterpart // byte[] keyValue = new byte[] { 'A', 'b', 'c', 'd', 'e', 'f', 'g', // 'h', 'i', 'j', 'k','l', 'm', 'n', 'o', 'p'}; // String keyForJS = new BASE64Encoder().encode(keyValue); var base64Key = "QWJjZGVmZ2hpamtsbW5vcA=="; console.log( "base64Key = " + base64Key ); // this is the actual key as a sequence of bytes var key = CryptoJS.enc.Base64.parse(base64Key); console.log( "key = " + key ); // this is the plain text var plaintText = "Hello, World!"; console.log( "plaintText = " + plaintText ); // this is Base64-encoded encrypted data var encryptedData = CryptoJS.AES.encrypt(plaintText, key, { mode: CryptoJS.mode.ECB, padding: CryptoJS.pad.Pkcs7 }); console.log( "encryptedData = " + encryptedData ); // this is the decrypted data as a sequence of bytes var decryptedData = CryptoJS.AES.decrypt( encryptedData, key, { mode: CryptoJS.mode.ECB, padding: CryptoJS.pad.Pkcs7 } ); console.log( "decryptedData = " + decryptedData ); // this is the decrypted data as a string var decryptedText = decryptedData.toString( CryptoJS.enc.Utf8 ); console.log( "decryptedText = " + decryptedText );讨论(0)
加载中...
- 热议问题