encryption - Node.js crypto key and iv to match java SecretKeySpec / IvParameterSpec -


i'm trying to port java (simple) encryption algorythm node js. need able decrypt/encrypt stuff encrypted/decrypted java side.

i'm stuck @ beginning, initialization of cipher.

in java, key secretkeyspec, , initialization vector ivparameterspec:

public cryptstuff(string password) throws zillion_exceptions {     if (password==null) throw new invalidkeyexception("no encryption password set!");     key = new secretkeyspec(password.getbytes("utf-8"), "aes");     cipher = cipher.getinstance("aes/cbc/pkcs5padding");     ivspec=new ivparameterspec(new byte[cipher.getblocksize()]);     cipher.init(cipher.encrypt_mode, key, ivspec); }

nodejs requires key buffer , iv buffer, however, don't know how calculate them scratch:

var mcrypto = require('crypto'),     key=[0,0,0,0,0,0,.......],     iv=[0,0,0,0,0,.........];  function init (password) {      // generate key password     // generate iv blocksize?      var aescipher = mcrypto.createcipheriv("aes-????????", (new buffer(key)), (new buffer(iv)));     .     .     . }

also, what's matching algorithm string aes/cbc/pkcs5padding?

assuming have same password string in java code, can create key buffer in node:

var key = new buffer(password, "utf8");

since you're using 0 filled iv (bad!) in java, equivalent code in node:

var iv = new buffer(16); // 16 byte buffer random data iv.fill(0); // fill zeros

since you're using cbc mode in java, have same in node. note have select correct key size when selecting cipher string depending on "password" length:

var aescipher = mcrypto.createcipheriv("aes-128-cbc", key, iv); // or var aescipher = mcrypto.createcipheriv("aes-192-cbc", key, iv); // or var aescipher = mcrypto.createcipheriv("aes-256-cbc", key, iv);

node automatically apply pkcs#7 padding same pkcs#5 padding aes.

a password not key!

a password has not appropriate length used key (valid lengths 16 byte, 24 byte , 32 byte aes) , comprised of printable characters might make easier attacker brute force key.

what need create key password key derivation function. popular ones pbkdf2, bcrypt , scrypt (with increasing cost).

random iv!

you should generating new random iv every ciphertext produce. if use static iv, attacker observes ciphertexts can determine sent same or similar messages. if use random iv, ciphertexts differ attacker cannot determine whether 2 different ciphertexts created same plaintext or not. called semantic security.

the random iv doesn't have secret, can prepend ciphertext , slice off before decryption.

you can combine key derivation function (kdf). generate random salt kdf. kdf able derive variable amount of output bytes, let derive key || iv (concatenation) , split them. now, need prepend salt ciphertext.

authentication!

depending on system, might vulnerable attacks such padding oracle attack. best defense against authenticate ciphertext. can either use encrypt-then-mac scheme strong mac such hmac-sha256 or authenticated mode of operation such gcm or eax. java , node both support gcm, there little more work involved.


Comments

Post a Comment

Popular posts from this blog

node.js - Using Node without global install -

i'm working on few node & electron (atom shell) projects , i'm curious how them work without user having install node globally. i've seen few applications including node directory in project contains node.exe binary. how go setting node project use binary? edit: thought should add, i've searched everywhere answer this, unrelated results.
Read more

How to access a php class file from PHPFox framework into javascript code written in simple HTML file? -

i've website developed using phpfox v3.0.7 . now i'm trying implement 'sse(server sent events)' 1 of php files. reference i'm giving below necessary code part of file. file titled process.class.php , present @ location /var/www/module/notification/include/service/process.class.php present on server having ip http://34.124.40.142/ . <?php /** * [phpfox_header] */ header('content-type: text/event-stream'); header('cache-control: no-cache'); defined('phpfox') or exit('no dice!'); /** * * * @copyright [phpfox_copyright] * @author raymond benc * @package phpfox_service * @version $id: service.class.php 67 2009-01-20 11:32:45z raymond_benc $ */ class notification_service_process extends phpfox_service { /** * class constructor */ public function __construct() { $this->_stable = phpfox::gett('notification'); } public function add($...
Read more

java - Null response to php query in android, even though php works properly -

Image
table i'm trying retrieve above data using 2 php files below. want pass email parameter , return bets user = email. work fine when tested advanced rest client, problem not php. however, when try through android 2 java classes below, null pointer exception (logcat below) , json object returned null. i'm not sure error is, think i'm not passing parameter php , that's why it's producing null response. logcat 05-31 15:10:50.227 26074-26074/com.example.albert.betterapp e/androidruntime﹕ fatal exception: main process: com.example.albert.betterapp, pid: 26074 java.lang.runtimeexception: unable start activity componentinfo{com.example.albert.betterapp/com.example.albert.betterapp.displayallbets}: java.lang.nullpointerexception @ android.app.activitythread.performlaunchactivity(activitythread.java:2292) @ android.app.activitythread.handlelaunchactivity(activitythread.java:2350) @ android.app.activitythread.acce...
Read more