1. 首頁
  2. 問答
  3. CryptoJS中加密解密的Javascript加密

CryptoJS中加密解密的Javascript加密

2016-12-02 195 views
1

我試圖加密服務器端(加密節點)和解密客戶端(CryptoJS)。我可以使用cryptoJS創建密鑰,並且可以在使用相同單獨的庫時進行加密和解密,但問題是我無法使用Crypto加密,而是使用CryptoJS進行解密,這是真實世界的場景。沒有錯誤,只是一個空的迴應。CryptoJS中加密解密的Javascript加密

任何幫助非常感謝請!

iv = crypto.randomBytes(16), 
orig = 'A confidential message.'; 
//Crypto JS creates key 
var password = "sixteen byte key"; 
var salt = CryptoJS.lib.WordArray.random(128/8); 
var key = CryptoJS.PBKDF2(password, salt, { keySize: 128/32, iterations: 1000 }); 
console.log("step1 generated key: "+ key); 

//Convert key for crypto use - as a Buffer 
var hashHex = key.toString(CryptoJS.enc.Hex); 
var hash = new Buffer(hashHex,'hex'); 

//Test encryption and decryption with crypto (Node) 
//use CryptoJS key to encrypt data using crypto cipheriv 
var cipher2 = crypto.createCipheriv('aes-128-cbc', hash, iv); //iv must be a buffer 
var encrypted1 = cipher2.update(orig, 'utf8', 'hex'); 
var encrypted2 = encrypted1 += cipher2.final('hex'); 
console.log("Crypto string:", encrypted2.toString()); 

// Start decrypt 
var decipher = crypto.createDecipheriv('aes-128-cbc', hash, iv); 
var dec = decipher.update(encrypted2, 'hex', 'utf8') 
dec += decipher.final('utf8'); 
console.log("Crypto decrypted msg:", dec); 

//test with crypto JS (ie the client) 
//CryptoJS key is a string 
var encryptedCJS = CryptoJS.AES.encrypt(orig, key.toString(), { iv: iv, mode: CryptoJS.mode.CBC}); 
console.log("CryptoJS encrypted: "+encryptedCJS); 

var decryptedCryptoJS = CryptoJS.AES.decrypt(encryptedCJS, key.toString(), { mode: CryptoJS.mode.CBC, iv: iv }); 
console.log("CryptoJS decrypted msg: "+decryptedCryptoJS.toString(CryptoJS.enc.Utf8)); 

//This part does not work - use message encrypted by crypto but cannot decrypt with CryptoJS. decryptedCryptoJSFinal is empty 
var decryptedCryptoJSFinal = CryptoJS.AES.decrypt(encrypted2, key.toString(), {iv: iv, mode: CryptoJS.mode.CBC}); 
console.log("FINAL CryptoJS decrypted: "+decryptedCryptoJSFinal.toString(CryptoJS.enc.Utf8));

我認爲密碼加密的輸出必須是不同的格式才能輸出CryptoJS加密,但我找不到問題。總的來說,我打算髮送加密的數據作爲JSON在CryptoJS的客戶端上進行解密。

來源

2016-12-02 user7239926

+0

FWIW,如果您使用的WebPack/browserify /等您可以使用相同的節點'crypto' API。 – mscdex

+0

@mscdex好點謝謝。 FWIW我想使用一個不同的lib,因爲服務器可能是Java,.Net等。順便說一句,我認爲我已經破解了它,CryptoJS希望解密一個「字數組」,所以我認爲問題在那裏。仍然證明在莫的修復。 – user7239926

回答

0

我認爲你的問題出現在客戶端,如果你將'key'和'iv'作爲字符串傳遞給'CryptoJS.AES.encrypt',那麼CryptoJS會將你的'key'和一個隨機'salt'爲密碼生成不同的密鑰。您可以使用相同的密鑰和iv來驗證它是否從相同的clearText生成不同的cipherText,因爲每次運行該函數時都會在CryptoJS內部生成不同的密鑰。

爲了避免這種情況,您需要傳遞'key'和'iv'編碼(取決於您使用的代碼,在'hex'或'base64'中),然後CryptoJS解釋它不必生成一個祕密密鑰並將您的'密鑰'加密。

檢查這個例子:

//BACKEND with node crypto aes-256-cbc-> generate key and ciphertext 
///////////////////////////////////////////////////////////////////// 
var crypto = require('crypto'); 
var algorithm = 'aes-256-cbc'; 
var inputEncoding = 'utf8'; 
var outputEncoding = 'base64'; 
var pt = 'HELLO'; 

//generate key and iv 
var masterKey = "253D3FB468A0E24677C28A624BE0F939"; 
var salt = "0000000000000000"; 
var keySize = 256/8; 
var ivSize = 128/8; 
var iterations = 100; 
var outputKey = crypto.pbkdf2Sync(masterKey, salt, iterations, keySize+ivSize, "sha1"); 

// obtain key and IV splitting outputKey 
var buffer = new Buffer(outputKey, inputEncoding); 
var secretKey = buffer.slice(0, keySize); 
var iv = buffer.slice(keySize, (keySize+ivSize)); 

console.log('secretKey->',secretKey.toString('base64')); 
console.log('iv->',iv.toString('base64'));  

//encrypt 
var encrypt = crypto.createCipheriv(algorithm, secretKey, iv); 
var encrypted = encrypt.update(pt, inputEncoding, outputEncoding); 
encrypted += encrypt.final(outputEncoding); 
console.log('Ciphering "%s"', pt); 
//We obtain a 
console.log('CipherText base64' string "%s ', encrypted.toString()); 



//FRONTEND with node CryptoJS aes-256-cbc-> generate same key and obtain cleartext 
//////////////////////////////////////////////////////////////////// 
var masterKey = "253D3FB468A0E24677C28A624BE0F939"; 
var salt ="0000000000000000"; 
var iterations = 100; 
var keySize = 256; 
var ivSize = 128; 
var outputKey = CryptoJS.PBKDF2(masterKey, salt, { 
    keySize: (keySize+ivSize)/32, 
    iterations: iterations 
}); 
// the underlying words arrays might have more content than was asked: remove insignificant words 
outputKey.clamp(); 

// split key and IV 
var secretKey = CryptoJS.lib.WordArray.create(outputKey.words.slice(0, 
keySize/32)); 
var iv = CryptoJS.lib.WordArray.create(outputKey.words.slice(keySize/32)); 

console.log('secretKey->', secretKey.toString(CryptoJS.enc.Base64)); 
console.log('iv->', iv.toString(CryptoJS.enc.Base64)); 

var decrypted = CryptoJS.AES.decrypt(ct, secretKey,{iv: iv});//Default mode CBC { mode: CryptoJS.mode.CFB }); 
console.log('CipherText->', ct); 
console.log('ClearText decrypted', decrypted.toString(CryptoJS.enc.Utf8));

來源

2017-08-27 14:03:02 bestbalance

相關問題

 相關問題