You don’t want to specify PKCS#7 padding for block cipher use. You want to specify PKCS#5 padding. PKCS#5 is specified for use with block ciphers while PKCS#7 is not (it’s use for different places like in S/MIME). I will point out that PKCS#5 and PKCS#7 actually specify exactly the same type of padding (they are … Read more
This is based on the NewCFBEncrypter / NewCFBDecrypter examples and seems to do what you require: EDIT: Based on Kluyg’s comment regarding IV creation I’ve modified the example code to use the recommended method of creating the IV from the ciphertext same method as the linked example to create the IV from the ciphertext. (In … Read more
The IV has been thoroughly covered by the other answers, so I’ll focus just on storing the key. First… I can’t except it could not be done on a single server at software level. Anything done in software can be undone in software. You can encrypt, hide, and lock it in as many safes as … Read more
If you take user input for the password make sure to read this answer. You should take a look at: CipherInputStream and CipherOutputStream. They are used to encrypt and decrypt byte streams. I have a file named cleartext. The file contains: Hi, I’m a clear text. How are you? That’s awesome! Now, you have an … Read more
Yes, you need all of these things. Salt (and an “iteration count”) is used to derive a key from the password. Refer to PKCS #5 for more information. The salt and iteration count used for key derivation do not have to be secret. The salt should be unpredictable, however, and is best chosen randomly. CBC … Read more
There is no security hole by sending the IV in cleartext – this is similar to storing the salt for a hash in plaintext: As long as the attacker has no control over the IV/salt, and as long as it is random, there is no problem.
Be sure to use the same parameters which seem to be AES with CBC mode with iv, PKCS5Padding (actually PKCS#7) padding and a 16-byte (128-bit) key. PKCS#5 padding and PKCS#7 padding are essentially the same, sometimes for historic reasons PKCS#5 padding is specified for use with AES but the actual padding is PKCS#7. Make sure … Read more
Use this: https://github.com/ncb000gt/node.bcrypt.js/ bcrypt is one of just a few algorithms focused on this use case. You should never be able to decrypt your passwords, only verify that a user-entered cleartext password matches the stored/encrypted hash. bcrypt is very straightforward to use. Here is a snippet from my Mongoose User schema (in CoffeeScript). Be sure … Read more
If you use a block-chaining mode like CBC, you need to provide an IvParameterSpec to the Cipher as well. So you can initialize an IvParameterSpec like this: // build the initialization vector. This example is all zeros, but it // could be any value or generated using a random number generator. byte[] iv = { … Read more
Check out this link it has a example code to encrypt/decrypt data using AES256CBC using EVP API. https://github.com/saju/misc/blob/master/misc/openssl_aes.c Also you can check the use of AES256 CBC in a detailed open source project developed by me at https://github.com/llubu/mpro The code is detailed enough with comments and if you still need much explanation about the API … Read more