I am trying to generate a key using Java. To be honest I am not that experienced with keys, password, ciphers and encryption. And from whatever I have searched from this site, I see it as a very common problem. I did some reading and came up with this code that I wrote: This is modified from an answer that
Tag: cryptography
SHA1 signature created in Java not being verified in PHP
I am creating an RSA signature in Java and sending it in the Auth header to a PHP server which is then verifying it. The problem is that although the signature is being verified in Java, it is failing in PHP. How do I fix this? My PHP code where I’m verifying the sign: Update: I am now signing like
Authorized responder for an OCSP response not validating with CertPathValidator
I’m trying to validate a certificate path with stapled OCSP checking through CertPathValidator. There might be some RFC-protocol that prohibits what I expect to validate just fine, but I’ve been unable to find this. Some paint art to describe relations between certificates discussed: overview When…
Java SecureRandom declaration should be static class specific or can be instance specific
I am trying to use a SecureRandom to generate random numbers in my java project. But I am a little confused as how to keep my object for SecureRandom. Should it be a static class member. I dont intend to call this from outside. Below is my current implementation : Is this the correct way to use SecureRandom i…
Is SecureRandom weaken when seed with Random?
Could a seed from java.util.Random for java.security.SecureRandom weaken the cryptographically strong random number generator? I saw this code and wonder why this is done in that specific way. From the documentation, the call of setSeed will never reduce randomness. So why is setSeed called anyway? public voi…
Decrypt Java AES/CBC/PKCS5Padding with CryptoJS
I have some problem decrypting text with CryptoJS that has been encrypted with Java. The decryption should be done with AES/CBC/PKCS5Padding. The encrypted string is base64 encoded and I decode it before trying to decrypt the string. This is how the Java code looks like: And this is how I attempt to decrypt i…
trying to convert Java RSA-PSS signature verification code (with SHA256 hash, SHA1 MGF hash) to Python
Here’s my Java code, which successfully verifies the signature, as expected. The full code (with the imports, keys, message and signature) can be seen at https://pastebin.com/PmhGDaPv in case you want to try to reproduce the issue. My Python code, which does not verify the signature, as expected: The fu…
How read a PKCS8 encrypted Private key which is also encoded in DER with bouncycastle?
I have tried answers of these questions: Bouncy Castle : PEMReader => PEMParser Read an encrypted private key with bouncycastle/spongycastle However as my encrypted key is encoded in DER when I call object is null. I can convert it to PEM with this openssl’s command (it decrypts the key too) but I ne…
Is there any stable serialization method for different languages?
In my project we have an API, and many clients may send transactions to this API. Transactions should be signed. Clients may be written in any language (C++, C#, python, go, whatever), with any CPU …
How to translate an OID to a JCE algorithm name? [closed]
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers. We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations. Closed 5 years ago. Improve this ques…