encryption

HSM and custom module

我是研究僧i 提交于 2021-02-20 05:26:09
问题 We are implementing safety-critical system, where the FIPS 140-2 compliant HSM (hardware security module) is required to generate and store key material, perform encryption/decryption and run custom code with the following requirements set for the custom module: Module is available over RPC Module has access to all HSM keys and services Module has in-memory and persistent storage (1+ MB both) Module memory is secured (FIPS 140-2 level 3+) As for the HSM services itself, it is required to:

C# Encrypt/Decrypt from Java AES/CBC/PKCS5Padding

时光怂恿深爱的人放手 提交于 2021-02-20 02:21:02
问题 I'm facing an issue trying to Decrypt a string which has been encrypted in Java with the following properties (Java code) public static Builder getDefaultBuilder(String key, String salt, byte[] iv) { return new Builder() .setIv(iv) .setKey(key) .setSalt(salt) .setKeyLength(128) .setKeyAlgorithm("AES") .setCharsetName("UTF8") .setIterationCount(1) .setDigestAlgorithm("SHA1") .setBase64Mode(Base64.DEFAULT) .setAlgorithm("AES/CBC/PKCS5Padding") .setSecureRandomAlgorithm("SHA1PRNG")

C# Encrypt/Decrypt from Java AES/CBC/PKCS5Padding

守給你的承諾、 提交于 2021-02-20 02:14:53
问题 I'm facing an issue trying to Decrypt a string which has been encrypted in Java with the following properties (Java code) public static Builder getDefaultBuilder(String key, String salt, byte[] iv) { return new Builder() .setIv(iv) .setKey(key) .setSalt(salt) .setKeyLength(128) .setKeyAlgorithm("AES") .setCharsetName("UTF8") .setIterationCount(1) .setDigestAlgorithm("SHA1") .setBase64Mode(Base64.DEFAULT) .setAlgorithm("AES/CBC/PKCS5Padding") .setSecureRandomAlgorithm("SHA1PRNG")

C# Encrypt/Decrypt from Java AES/CBC/PKCS5Padding

主宰稳场 提交于 2021-02-20 02:14:11
问题 I'm facing an issue trying to Decrypt a string which has been encrypted in Java with the following properties (Java code) public static Builder getDefaultBuilder(String key, String salt, byte[] iv) { return new Builder() .setIv(iv) .setKey(key) .setSalt(salt) .setKeyLength(128) .setKeyAlgorithm("AES") .setCharsetName("UTF8") .setIterationCount(1) .setDigestAlgorithm("SHA1") .setBase64Mode(Base64.DEFAULT) .setAlgorithm("AES/CBC/PKCS5Padding") .setSecureRandomAlgorithm("SHA1PRNG")

Encrypt chat messages stored in Firebase Database

不打扰是莪最后的温柔 提交于 2021-02-19 14:02:53
问题 I am making an application in which chatting is also a feature for which I am using firebase realtime database. Though all the data stored in firebase is via SSL but I want that even the administration is not able to see that messages. I thought of implementing the end-to-end encryption by using the public and private key architecture, but storing the private key on device won't be good as a new private key will be created when the phone is uninstalled or even when the app is used in another

Decrypt openssl AES 256 CBC in browser/CryptoJS

浪子不回头ぞ 提交于 2021-02-19 07:36:52
问题 I want to decrypt a string that has been encrypted with openssl on the server like this: openssl enc -e -aes-256-cbc -pbkdf2 -a -S 0123456789ABCDEF -A -k mypassword Note this is done providing only a salt and password, and openssl should handle key and IV automatically. Am I too optimistic that this can happen when the browser decrypts too? If at all possible, I want to do it with only those encryption settings, or the bare minimum of increased complexity. In the browser, I'm trying to

Laravel with datatables: searching encrypted data

南楼画角 提交于 2021-02-19 06:26:06
问题 I have encountered a great issue while using Laravel's datatables. I have a model that has 3 values automatically encrypted (using Crypt) by setter/getter. I am using datatables to render a table by doing so: return datatables()->of(Patient::query()) ->addColumn('name_surname', function($row){ return $row->name.' '.$row->surname; }) ->make(true); There is 3 ways to pass a model to datatable: by query (Patient::query()) by collection (Patient::all()) by DB facade The third doesnt decrypt data.

Sensitive Data separation within MongoDB and NodeJS - references via encrypted key

旧街凉风 提交于 2021-02-19 03:06:58
问题 I am currently working on an application which allows users to save sensitive date. Since it's a web application we are using NodeJS and MongoDB for persistence. (BTW I am completely new to Node and NoSQL) We do have users who can store kind of a medical history. Name and email are stored within a user document while the other stuff is stored within the profile. To improve security I would like to encrypt the references from a user to his profile and vice versa. At the moment I am using the

how to 'Zero out' from memory an AES SecretKeySpec Key in Java

放肆的年华 提交于 2021-02-19 02:25:27
问题 I am using Java AES encryption using SecretKeySpec(byte[] key, String algorithm) to generate a Key object. After I encrypt something, I want to remove the Key from memory. I can remove all references to the Key, but that does not guarantee that the key is not floating somewhere in memory. I can "zero out" the byte[] array that I used to generate the Key, but how can I zero out or flush the actual Key memory. 回答1: There doesn't appear to be a way to do this in Java versions up to 7, but it has

Is it possible to implement AES with a 64-bit I/O block size?

↘锁芯ラ 提交于 2021-02-19 00:40:15
问题 I'm working on an application with a very specific encryption requirement: We are required to encrypt/decrypt individual 64-bit values, to protect certain parts of our internal architecture from reverse engineering through our public web endpoints. The problem is, the existing 64-bit encryption methods (such as 3DES) are not secure enough to meet our requirements (as far as I know). They also perform slower than AES, which is another painpoint. My question is, can we feasibly implement AES