CryptoJS’ encrypt function with a password uses the same EVP_BytesToKey function node.js’ createCipher, with the important difference that CryptoJS uses a random salt to derive whereas node does not (emphasis mine): Note: createCipher derives keys with the OpenSSL function EVP_BytesToKey with the digest algorithm set to MD5, one iteration, and no salt. Either you directly … Read more
From core.js: /** * Library namespace. */ var C_lib = C.lib = {}; It seems that every file from the package CryptoJS use it something like: var C_lib = C.lib; var WordArray = C_lib.WordArray; var BlockCipher = C_lib.BlockCipher; So, most probably you have to link core.js if you are using development version. Example from CryptoJS … Read more
This works for decryption using javascript. <script src=”https://cdnjs.cloudflare.com/ajax/libs/crypto-js/3.1.9-1/aes.js”></script> var key = “2e35f242a46d67eeb74aabc37d5e5d05”; var data = CryptoJS.AES.encrypt(“Message”, key); // Encryption Part var decrypted = CryptoJS.AES.decrypt(data, key).toString(CryptoJS.enc.Utf8); // Message Guess I am a little late to the party.
There seem to be two issues: CryptoJS is not using your variable as the key. As @Miguel-F mentioned, when you pass in a string, “it’s treated as a passphrase and used to derive [the] actual key and IV”. Both are randomly generated, which is why your encrypted result keeps changing. But more importantly, this means … Read more
Disclaimer: Do not use encryption unless you understand encryption concepts including chaining mode, key derivation functions, IV and block size. And don’t roll your own security scheme but stick to an established one. Just throwing in encryption algorithms doesn’t mean an application has become any more secure. CryptoJS implements the same key derivation function as … Read more
You will have to implement OpenSSL’s EVP_BytesToKey, because that is what CryptoJS uses to derive the key and IV from the provided password, but pyCrypto only supports the key+IV type encryption. CryptoJS also generates a random salt which also must be send to the server. If the ciphertext object is converted to a string, then … Read more
CryptoJS uses the non-standardized OpenSSL KDF for key derivation (EvpKDF) with MD5 as the hashing algorithm and 1 iteration. The IV is also derived from the password which means that only the actual ciphertext, the password and the salt are needed to decrypt this on Java side. In other words, PBKDF2 is not used for … Read more
CryptoJS: PHP openssl encrypt -> javascript decrypt PHP: function CryptoJSAesEncrypt($passphrase, $plain_text){ $salt = openssl_random_pseudo_bytes(256); $iv = openssl_random_pseudo_bytes(16); //on PHP7 can use random_bytes() istead openssl_random_pseudo_bytes() //or PHP5x see : https://github.com/paragonie/random_compat $iterations = 999; $key = hash_pbkdf2(“sha512”, $passphrase, $salt, $iterations, 64); $encrypted_data = openssl_encrypt($plain_text, ‘aes-256-cbc’, hex2bin($key), OPENSSL_RAW_DATA, $iv); $data = array(“ciphertext” => base64_encode($encrypted_data), “iv” => bin2hex($iv), “salt” … Read more
When a message is encrypted in this way: CryptoJS.AES.encrypt(“message”, “passphrase”) a password-based approach is used. For that CryptoJS generates a new salt and uses this salt in conjunction with the passphrase to derive the key and IV (I’ve recreated a derivation function for this question). After the ciphertext is produced a special OpenSSL formatter is … Read more
The problem is that in the CryptoJS code a password is used to derive the key and the IV to be used for AES encryption, but mcrypt only uses the key to encrypt/decrypt. This information needs to be passed to php. Since you don’t want to transmit the password, you have to derive the key … Read more