StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

PO
primarykey
Id
1925297
data
AcceptedAnswerId
0
AnswerCount
0
ClosedDate
CommentCount
4
CommunityOwnedDate
CreationDate
2009-12-17T23:23:15.497
FavoriteCount
0
LastActivityDate
2016-08-10T14:56:13.650
LastEditDate
2016-08-10T14:56:13.650
LastEditorUserId
3474
OwnerUserId
3474
ParentId
1925104
PostTypeId
2
Score
13
ViewCount
0
LastEditorDisplayName
text
Body
Most Java <code>Key</code> instances are represented as a string of bytes resulting from their <a href="http://java.sun.com/javase/6/docs/api/java/security/Key.html#getEncoded()" rel="noreferrer"><code>getEncoded()</code></a> method. This is what needs to be stored in order to reconstruct the key later. However, to store a key safely in electronic form, it should be encrypted. Of course, encrypting the key would require another key (or password)… and so you have an infinite regress. A Java <code>KeyStore</code> can be used to store <code>SecretKey</code> objects in this manner, and that is useful when you have many secret keys that are all protected by a single "master" password. But for protecting a single key, it doesn't make a lot of sense. One alternative is to present the key to the user in a form that can be stored in some safe manner (in many applications, that might be on a slip of paper in their wallet). This could be as simple as displaying the bytes of the key encoded in hexadecimal, Base-64, or other text encoding, and asking the user to write it down. Another approach is to allow the user to choose a memorable password, and generate a key with that, using an algorithm like PBKDF2. The salt (and maybe the iteration count) used for key derivation would need to be recorded somewhere though. Another drawback is that people tend to choose from a relatively limited number of passwords out of the total available. So keys derived from passwords may be easier guess than than the key size suggests. <hr> Here is an illustration of the basic technique for persisting and reconstituting a secret key. <pre><code>byte[] encoded = aesKey.getEncoded(); /* Now store "encoded" somewhere. For example, display the key and ask the user to write it down. */ String output = Base64.getEncoder().withoutPadding().encodeToString(encoded); System.out.println("Keep it secret, keep it safe! " + output); ... /* At some point, you need to reconstitute the key. Let's say the user enters it as a base-64 number that you convert to bytes. */ String input = ... ; byte[] encoded = Base64.getDecoder().decode(input); SecretKey aesKey = new SecretKeySpec(encoded, "AES"); </code></pre>
Tags
Title
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. POEasy way to store/restore encryption key for decrypting string in java
 singulars
 PostTypePostTypeId
 PTQuestion
PostTypePostTypeId
1. PTAnswer
UserLastEditorUserId
1. USerickson
UserOwnerUserId
1. USerickson
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. This table or related slice is empty.
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
2. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
CommentsPostId

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.