-
-
Save ayushsharma82/c013c14c787a06918c15da3e3e4a36b0 to your computer and use it in GitHub Desktop.
example using node.js crypto API with aes-256-gcm
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| const buffer = require('buffer'); | |
| const crypto = require('crypto'); | |
| // Demo implementation of using `aes-256-gcm` with node.js's `crypto` lib. | |
| const aes256gcm = (key) => { | |
| const ALGO = 'aes-256-gcm'; | |
| // encrypt returns base64-encoded ciphertext | |
| const encrypt = (str) => { | |
| // Hint: the `iv` should be unique (but not necessarily random). | |
| // `randomBytes` here are (relatively) slow but convenient for | |
| // demonstration. | |
| const iv = new Buffer(crypto.randomBytes(16), 'utf8'); | |
| const cipher = crypto.createCipheriv(ALGO, key, iv); | |
| // Hint: Larger inputs (it's GCM, after all!) should use the stream API | |
| let enc = cipher.update(str, 'utf8', 'base64'); | |
| enc += cipher.final('base64'); | |
| return [enc, iv, cipher.getAuthTag()]; | |
| }; | |
| // decrypt decodes base64-encoded ciphertext into a utf8-encoded string | |
| const decrypt = (enc, iv, authTag) => { | |
| const decipher = crypto.createDecipheriv(ALGO, key, iv); | |
| decipher.setAuthTag(authTag); | |
| let str = decipher.update(enc, 'base64', 'utf8'); | |
| str += decipher.final('utf8'); | |
| return str; | |
| }; | |
| return { | |
| encrypt, | |
| decrypt, | |
| }; | |
| }; | |
| const KEY = new Buffer(crypto.randomBytes(32), 'utf8'); | |
| const aesCipher = aes256gcm(KEY); | |
| const [encrypted, iv, authTag] = aesCipher.encrypt('hello, world'); | |
| const decrypted = aesCipher.decrypt(encrypted, iv, authTag); | |
| console.log(decrypted); // 'hello, world' |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment