生成AES 256位密钥值
[英]generating AES 256 bit key value
问题描述
有没有人知道从任何长度的密码短语生成256位密钥值的方法? 加密不能被加密,因为需要再次生成加密值并在数据库中进行比较。 因此,每次加密时,值必须生成相同的加密字符串。
目前我正在使用一个32字符键来处理可能不正确的假设这是256位?
那么,我想要将“快速棕色狐狸”转换为合适的AES 256位密钥?
6 个解决方案
解决方案1
16 已采纳 2013-06-19 16:14:59
您可以使用任意大小的密码构造Rfc2898DeriveBytes Class ,然后在这种情况下派生所需大小的密钥,256位(32字节):
private static byte[] CreateKey(string password, int keyBytes = 32)
{
const int Iterations = 300;
var keyGenerator = new Rfc2898DeriveBytes(password, Salt, Iterations);
return keyGenerator.GetBytes(keyBytes);
}
为了产生确定性输出(即相同的输入将产生相同的输出),您将需要对盐进行硬编码。 盐必须至少为8个字节:
private static readonly byte[] Salt =
new byte[] { 10, 20, 30 , 40, 50, 60, 70, 80};
解决方案2
2 2013-06-19 16:15:19
可能最好的方法是使用SHA256(它将生成256位输出)和特定于应用程序的盐和迭代计数来使用PBKDF2。 您应该知道,使用特定于应用程序的盐可以从PBKDF2中删除相当多的保护,因此您可能需要额外的保护来缓解此问题。 一种方法是确保数据库是安全的,并且可以使用最大量的尝试。
你在规定32字符密码不是256位密钥时是正确的。 它不包含足够的熵,有些字节甚至可能没有有效的字符表示。
解决方案3
0 2018-07-13 11:35:30
public static string GenerateBitKey(int letterCount = 44)
{
// Get the number of words and letters per word.
int num_letters = letterCount;
// Make an array of the letters we will use.
char[] letters = "ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789".ToCharArray();
// Make a random number generator.
Random rand = new Random();
// Make the words.
// Make a word.
string word = "";
for (int j = 1; j <= num_letters; j++)
{
// Pick a random number between 0 and 25
// to select a letter from the letters array.
int letter_num = rand.Next(0, letters.Length - 1);
// Append the letter.
word += letters[letter_num];
}
return word;
}
解决方案4
0 2018-09-05 12:39:35
private static IBuffer GetMD5Hash(string key)
{
IBuffer bufferUTF8Msg = CryptographicBuffer.ConvertStringToBinary(key, BinaryStringEncoding.Utf8);
HashAlgorithmProvider hashAlgorithmProvider = HashAlgorithmProvider.OpenAlgorithm(HashAlgorithmNames.Md5);
IBuffer hashBuffer = hashAlgorithmProvider.HashData(bufferUTF8Msg);
if (hashBuffer.Length != hashAlgorithmProvider.HashLength)
{
throw new Exception("There was an error creating the hash");
}
return hashBuffer;
}
#region Static
public static string GenerateKey(string password, int resultKeyLength = 68)
{
if (password.Length < 6)
throw new ArgumentException("password length must atleast 6 characters or above");
string key = "";
var hashKey = GetMD5Hash(password);
var decryptBuffer = CryptographicBuffer.ConvertStringToBinary(password, BinaryStringEncoding.Utf8);
var AES = SymmetricKeyAlgorithmProvider.OpenAlgorithm(SymmetricAlgorithmNames.AesEcbPkcs7);
var symmetricKey = AES.CreateSymmetricKey(hashKey);
var encryptedBuffer = CryptographicEngine.Encrypt(symmetricKey, decryptBuffer, null);
key = CryptographicBuffer.EncodeToBase64String(encryptedBuffer);
string cleanKey = key.Trim(new char[] { ' ', '\r', '\t', '\n', '/', '+', '=' });
cleanKey = cleanKey.Replace("/", string.Empty).Replace("+", string.Empty).Replace("=", string.Empty);
key = cleanKey;
if(key.Length > resultKeyLength)
{
key = key.Substring(0, Math.Min(key.Length, resultKeyLength));
}
else if(key.Length == resultKeyLength)
{
return key;
}
else if (key.Length < resultKeyLength)
{
key = GenerateKey(key);
}
return key;
}
//获取AES密钥的前44个字符和AES IV的剩余字符
解决方案5
0 2019-07-31 02:04:14
我的版本。 我只想要没有密码的密钥。
public static string GenerateBitKey(int letterCount = 44)
{
// Get the number of words and letters per word.
int num_letters = letterCount;
// Make an array of the letters we will use.
char[] letters = "ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789abcdefghijklmnopqrsruvwxyz+".ToCharArray();
int lettersLength = letters.Length;
// Make a word.
string word = "";
//Use Cryptography to generate random numbers rather than Psuedo Random Rand
// Deliberate overkill here
byte[] randomBytes = new byte[num_letters*256];
List<int> rands = new List<int>();
do
{
using (System.Security.Cryptography.RNGCryptoServiceProvider rngCsp = new
System.Security.Cryptography.RNGCryptoServiceProvider())
{
// Fill the array with a random value.
rngCsp.GetBytes(randomBytes);
}
// Truncate the set of random bytes to being in range 0 .. (lettersLength-1)
// Nb Using mod of randomBytes will reduce entropy of the set
foreach (var x in randomBytes)
{
if (x < lettersLength)
rands.Add((int)x);
if (rands.Count()==num_letters)
break;
}
}
while (rands.Count < letterCount);
int[] randsArray = rands.ToArray();
// Get random selection of characters from letters
for (int j = 0; j < num_letters; j++)
{
int letter_num = randsArray[j];
// Append the letter.
word += letters[letter_num];
}
return word;
}
解决方案6
-1 2013-06-19 16:13:46
您可以使用一些散列函数,从任意长度的输入提供256位输出,例如SHA256。
如何在C#Windows Phone应用程序中使用密钥创建Aes 256位加密?
[英]How to create Aes 256bit Encryption with key in C# Windows Phone application?
当使用256位密钥调用aes128密码时,libgcrypt做什么不同?
[英]What is libgcrypt doing different when calling the aes128 cipher with a 256bit key?
我可以在Windows Phone 8.1中执行256位AES编码/解码吗
[英]Can I perform a 256 bit AES encoding/decoding in windowsphone 8.1
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.