Databases
StackOverflow2013
Postsdbo
PO
 

Note that there are some explanatory texts on larger screens.

plurals
  1. PO
    primarykey
    data
    text
    <p>As you requested are hare some code snippets. RSA keys are from x509 certs.</p> <p><strong>Java RSA/AES:</strong></p> <pre><code>// symmetric algorithm for data encryption final String ALGORITHM = "AES"; // Padding for symmetric algorithm final String PADDING_MODE = "/CBC/PKCS5Padding"; // character encoding final String CHAR_ENCODING = "UTF-8"; // provider for the crypto final String CRYPTO_PROVIDER = "Entrust"; // RSA algorithm used to encrypt symmetric key final String RSA_ALGORITHM = "RSA/ECB/PKCS1Padding"; // symmetric key size (128, 192, 256) if using 192+ you must have the Java // Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files // installed int AES_KEY_SIZE = 256; private byte[] encryptWithRSA(byte[] aesKey, X509Certificate cert) throws NoSuchAlgorithmException, NoSuchPaddingException, InvalidKeyException, IllegalBlockSizeException, BadPaddingException { // get the public key from the encryption certificate to encrypt with PublicKey pubKey = cert.getPublicKey(); // get an instance of the RSA Cipher Cipher rsaCipher = Cipher.getInstance(RSA_ALGORITHM); // set the cipher to use the public key rsaCipher.init(Cipher.ENCRYPT_MODE, pubKey); // encrypt the aesKey return rsaCipher.doFinal(aesKey); } private AESEncryptedContents encryptWithAes(byte[] dataToEncrypt) throws NoSuchAlgorithmException, NoSuchPaddingException, InvalidKeyException, IllegalBlockSizeException, BadPaddingException, NoSuchProviderException { // get the symmetric key generator KeyGenerator keyGen = KeyGenerator.getInstance(ALGORITHM); keyGen.init(AES_KEY_SIZE); // set the key size // generate the key SecretKey skey = keyGen.generateKey(); // convert to binary byte[] rawAesKey = skey.getEncoded(); // initialize the secret key with the appropriate algorithm SecretKeySpec skeySpec = new SecretKeySpec(rawAesKey, ALGORITHM); // get an instance of the symmetric cipher Cipher aesCipher = Cipher.getInstance(ALGORITHM + PADDING_MODE, CRYPTO_PROVIDER); // set it to encrypt mode, with the generated key aesCipher.init(Cipher.ENCRYPT_MODE, skeySpec); // get the initialization vector being used (to be returned) byte[] aesIV = aesCipher.getIV(); // encrypt the data byte[] encryptedData = aesCipher.doFinal(dataToEncrypt); // package the aes key, IV, and encrypted data and return them return new AESEncryptedContents(rawAesKey, aesIV, encryptedData); } private byte[] decryptWithAES(byte[] aesKey, byte[] aesIV, byte[] encryptedData) throws NoSuchAlgorithmException, NoSuchPaddingException, InvalidKeyException, InvalidAlgorithmParameterException, IllegalBlockSizeException, BadPaddingException, UnsupportedEncodingException, NoSuchProviderException { // initialize the secret key with the appropriate algorithm SecretKeySpec skeySpec = new SecretKeySpec(aesKey, ALGORITHM); // get an instance of the symmetric cipher Cipher aesCipher = Cipher.getInstance(ALGORITHM + PADDING_MODE, CRYPTO_PROVIDER); // set it to decrypt mode with the AES key, and IV aesCipher.init(Cipher.DECRYPT_MODE, skeySpec, new IvParameterSpec(aesIV)); // decrypt and return the data byte[] decryptedData = aesCipher.doFinal(encryptedData); return decryptedData; } private byte[] decryptWithRSA(byte[] encryptedAesKey, PrivateKey privKey) throws IllegalBlockSizeException, BadPaddingException, InvalidKeyException, NoSuchAlgorithmException, NoSuchPaddingException, NoSuchProviderException { // get an instance of the RSA Cipher Cipher rsaCipher = Cipher.getInstance(RSA_ALGORITHM, CRYPTO_PROVIDER); // set the cipher to use the public key rsaCipher.init(Cipher.DECRYPT_MODE, privKey); // encrypt the aesKey return rsaCipher.doFinal(encryptedAesKey); } </code></pre> <p><strong>C# .Net:</strong></p> <pre><code>public byte[] encryptData(byte[] data, out byte[] encryptedAesKey, out byte[] aesIV) { if (data == null) throw new ArgumentNullException("data"); byte[] encryptedData; // data to return // begin AES key generation RijndaelManaged aesAlg = new RijndaelManaged(); aesAlg.KeySize = AES_KEY_SIZE; aesAlg.GenerateKey(); aesAlg.GenerateIV(); aesAlg.Mode = CipherMode.CBC; aesAlg.Padding = PaddingMode.PKCS7; // aes Key to be encrypted byte[] aesKey = aesAlg.Key; // aes IV that is passed back by reference aesIV = aesAlg.IV; //get a new RSA crypto service provider to encrypt the AES key with the certificates public key using (RSACryptoServiceProvider rsaCSP = new RSACryptoServiceProvider()) { //add the certificates public key to the RSA crypto provider rsaCSP.FromXmlString(encryptionCertificate.PublicKey.Key.ToXmlString(false)); //encrypt AES key with RSA Public key //passed back by reference encryptedAesKey = rsaCSP.Encrypt(aesKey, false); //get an aes encryptor instance ICryptoTransform aesEncryptor = aesAlg.CreateEncryptor(); encryptedData = encryptWithAes(aesEncryptor, data); } if (encryptedData == null) throw new CryptographicException( "Fatal error while encrypting with AES"); return encryptedData; } private byte[] encryptWithAes(ICryptoTransform aesEncryptor, byte[] data) { MemoryStream memStream = null; // stream to write encrypted data to CryptoStream cryptoStream = null; // crypto stream to encrypted data try { memStream = new MemoryStream(); // initiate crypto stream telling it to write the encrypted data to // the memory stream cryptoStream = new CryptoStream(memStream, aesEncryptor, CryptoStreamMode.Write); // write the data to the memory stream cryptoStream.Write(data, 0, data.Length); } catch (Exception ee) { // rethrow throw new Exception("Error while encrypting with AES: ", ee); } finally { // close 'em if (cryptoStream != null) cryptoStream.Close(); if (memStream != null) memStream.Close(); } // return the encrypted data return memStream.ToArray(); } </code></pre>
    singulars
    1. This table or related slice is empty.
    1. PORSA .NET encryption Java decryption
      singulars
      1. PTQuestion
    1. PTAnswer
    1. USCSchulz
    1. USPetey B
    plurals
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. VO
      singulars
      1. PO
      1. This table or related slice is empty.
      1. VTApproveEditSuggestion
    2. VO
      singulars
      1. PO
      1. This table or related slice is empty.
      1. VTUpMod
    1. COThanks a lot Petey! I am going to try the code...I hope it works and does not give me any problems with the byte[] to string conversion. I will try to adapt it (I am not using certs or AES) and I will post sth as soon as I try it. Thanks again!
      singulars
      1. PO
      1. USReixons
    2. CO@Reixons, no problem, let me know if I can help at all. What will you be encrypting? If it's longer than your RSA key length you should use AES+RSA.
      singulars
      1. PO
      1. USPetey B
    3. COWell, I have tested the code and I have some problems. I get: javax.crypto.BadPaddingException: Data must start with zero I will try to describe it better in 2h. I don't have enough reputation to do it now!! :(
      singulars
      1. PO
      1. USReixons
 

Querying!

 
Guidance
A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload