我是否正确地进行了AES256加密和解密Node.js?
我是否正确地进行了AES256加密和解密Node.js?
提问于 2018-09-07 05:33:19
我需要加密聊天消息,这将存储在数据库中。数据是不同长度的字符串。我想使用原生node.js加密库,并使用对称加密协议,如AES256。我有以下顾虑:
- Is CBC此类型字段的正确AES模式存储在MySQL中的
TEXT字段中? - 密钥是否正确生成?
- IV是否正确?将IV作为加密文本的前缀是正确的方法,还是应该是一个单独的字段?
// AES RFC - https://tools.ietf.org/html/rfc3602
const crypto = require('crypto');
const algorithm = 'aes-256-cbc';
// generate key with crypto.randomBytes(256/8).toString('hex')
const key = '6d858102402dbbeb0f9bb711e3d13a1229684792db4940db0d0e71c08ca602e1';
const IV_LENGTH = 16;
const encrypt = (text) => {
const iv = crypto.randomBytes(IV_LENGTH);
const cipher = crypto.createCipheriv(algorithm, Buffer.from(key, 'hex'), iv);
let encrypted = cipher.update(text);
encrypted = Buffer.concat([encrypted, cipher.final()]);
return `${iv.toString('hex')}:${encrypted.toString('hex')}`;
};
const decrypt = (text) => {
const [iv, encryptedText] = text.split(':').map(part => Buffer.from(part, 'hex'));
const decipher = crypto.createDecipheriv(algorithm, Buffer.from(key, 'hex'), iv);
let decrypted = decipher.update(encryptedText);
decrypted = Buffer.concat([decrypted, decipher.final()]);
return decrypted.toString();
};
exports.encrypt = encrypt;
exports.decrypt = decrypt;页面原文内容由Stack Overflow提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://stackoverflow.com/questions/52212430
复制相关文章
相似问题