Generate a key from a string?

advertisements

I need to generate a Key from a string, such that I can always create the same key from the same string. (Specifically a Key object, so that I can use it to create a Cipher in turn to create a SealedObject)

Is this possible in Java, and what class/method combination should I be looking at to do so?

For AES encryption:

SecretKeyFactory factory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA1");
KeySpec spec = new PBEKeySpec(password, salt, 65536, 256);
SecretKey tmp = factory.generateSecret(spec);
SecretKey secret = new SecretKeySpec(tmp.getEncoded(), "AES");

Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
cipher.init(Cipher.ENCRYPT_MODE, secret);

byte[] iv = cipher.getParameters().getParameterSpec(IvParameterSpec.class).getIV();
byte[] ciphertext = cipher.doFinal("Hello, World!".getBytes("UTF-8"));

// reinit cypher using param spec
Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
cipher.init(Cipher.DECRYPT_MODE, secret, new IvParameterSpec(iv));

Similarly for the deprecated PBKDF1 and insecure DES for communicating with legacy systems or learning purposes:

byte[] salt = {
    (byte)0xc7, (byte)0x73, (byte)0x21, (byte)0x8c,
    (byte)0x7e, (byte)0xc8, (byte)0xee, (byte)0x99
};

int count = 20;

PBEParameterSpec pbeParamSpec = new PBEParameterSpec(salt, count);
PBEKeySpec pbeKeySpec = new PBEKeySpec(password.toCharArray());
SecretKeyFactory keyFac = SecretKeyFactory.getInstance("PBEWithMD5AndDES");
SecretKey pbeKey = keyFac.generateSecret(pbeKeySpec);

Cipher cipher = Cipher.getInstance("PBEWithMD5AndDES");
cipher.init(Cipher.ENCRYPT_MODE, pbeKey, pbeParamSpec);

SealedObject sealed = new SealedObject(object, cipher);
...

Note that the iteration count is too low as well in the last example.

Related Articles

Need Groovy Syntax Help to Generate a Closure from a String

I'm trying to generate a closure from a string. The code inside the closure references a DSL function build(). The errors I'm getting imply that Groovy is trying to execute the closure instead of just declaring it. What is the correct syntax for this

How to get the array key from the string in java [Solved]

I have a string array that has duplicate value, then I remove the duplicate. Now, I need to get the array key from the result before and store it to new int array. I do not know how it will work in Java, since I search java doesn't provide array keys

Convert the array key from the string to the same value

I have a a vaery large array which is parsed to my php script in json form. I would like to convert the keys from string to integer. The keys are serial numbers so i can't just use array_values. Currently i do it like this but would much prefer a sol

How to generate a barcode from a string in swift

I am a new IOS developer. I was wandering how to generate a barcode in swift. I have the code already, there are multiple resources from where to learn how to read a barcode, but I didn't found any that talks about generating one from a string. Thank

Creating an RSA public key from a string

I've generated this test public key using 1024 RSA and then encoded it to DER and Base64 in another coding platform. I copied the key into a string in Android/Eclipse and I am trying to turn it into a public key using KeyFactory. It just keeps giving

Generate a function from a string in Javascript

I am using jQuery to take data from an xml file and save it to a string. The string is a switch statement which I want to become a function. $.get('type.xml', function(xml) { var cases=[]; $(xml).find('type').each(function(){ index=parseInt($(this).f

Generate a symbol from a string and apply it as a function

I'm just learning clojure, and I'm hitting a wall. I'm trying to read an arithmetic expression as an infix string and process it in Clojure. e.g. "1 + 2" -> (+ 1 2) I read in the "+" and turn it into a symbol like this: (def plus (s

Generate a hash from the string in Javascript / jQuery

I need to convert strings to some form of hash. Is this possible in Javascript/jQuery? I'm not utilizing a server-side language so I can't do it that way. String.prototype.hashCode = function() { var hash = 0, i, chr; if (this.length === 0) return ha

How to protect the encryption key from reverse engineering?

My software is using AES Rijndael. I am using a SHA-256 hash to generate a key from a string with an arbitrary length, and then passing this as both the private and public key since in this instance I do not need to differentiate between the two. How

Removing null / empty keys from a query string in asp.net MVC

Is there a way I can remove null or empty keys from a query string in asp.net MVC? For example I have a page where I filter data on a results table, if I search for John the query string would be redisplayed as: candidates?FirstName=John&LastName=&