How to encrypt and decrypt strings in android using AES?


Simple helper class to encrypt and decrypt strings using AES128. The result is Ascii-encoded (actually hex, no base64), so no byte[] has to be stored. A SEED value is used as a shared secret ("Master-Password"). Only with the same SEED the stored values can be decrypted. 


import java.security.SecureRandom;


import javax.crypto.Cipher;
import javax.crypto.KeyGenerator;
import javax.crypto.SecretKey;
import javax.crypto.spec.SecretKeySpec;


/**
 * Usage:
 * <pre>
 * String crypto = SimpleCrypto.encrypt(masterpassword, cleartext)
 * ...
 * String cleartext = SimpleCrypto.decrypt(masterpassword, crypto)
 * </pre>
 * @author ferenc.hechler
 */
public class SimpleCrypto {


 public static String encrypt(String seed, String cleartext) throws Exception {
  byte[] rawKey = getRawKey(seed.getBytes());
  byte[] result = encrypt(rawKey, cleartext.getBytes());
  return toHex(result);
 }

 public static String decrypt(String seed, String encrypted) throws Exception {
  byte[] rawKey = getRawKey(seed.getBytes());
  byte[] enc = toByte(encrypted);
  byte[] result = decrypt(rawKey, enc);
  return new String(result);
 }


 private static byte[] getRawKey(byte[] seed) throws Exception {
  KeyGenerator kgen = KeyGenerator.getInstance("AES");
  SecureRandom sr = SecureRandom.getInstance("SHA1PRNG");
  sr.setSeed(seed);
     kgen.init(128, sr); // 192 and 256 bits may not be available
     SecretKey skey = kgen.generateKey();
     byte[] raw = skey.getEncoded();
     return raw;
 }



 private static byte[] encrypt(byte[] raw, byte[] clear) throws Exception {
     SecretKeySpec skeySpec = new SecretKeySpec(raw, "AES");
  Cipher cipher = Cipher.getInstance("AES");
     cipher.init(Cipher.ENCRYPT_MODE, skeySpec);
     byte[] encrypted = cipher.doFinal(clear);
  return encrypted;
 }


 private static byte[] decrypt(byte[] raw, byte[] encrypted) throws Exception {
     SecretKeySpec skeySpec = new SecretKeySpec(raw, "AES");
  Cipher cipher = Cipher.getInstance("AES");
     cipher.init(Cipher.DECRYPT_MODE, skeySpec);
     byte[] decrypted = cipher.doFinal(encrypted);
  return decrypted;
 }


 public static String toHex(String txt) {
  return toHex(txt.getBytes());
 }
 public static String fromHex(String hex) {
  return new String(toByte(hex));
 }

 public static byte[] toByte(String hexString) {
  int len = hexString.length()/2;
  byte[] result = new byte[len];
  for (int i = 0; i < len; i++)
   result[i] = Integer.valueOf(hexString.substring(2*i, 2*i+2), 16).byteValue();
  return result;
 }


 public static String toHex(byte[] buf) {
  if (buf == null)
   return "";
  StringBuffer result = new StringBuffer(2*buf.length);
  for (int i = 0; i < buf.length; i++) {
   appendHex(result, buf[i]);
  }
  return result.toString();
 }
 private final static String HEX = "0123456789ABCDEF";
 private static void appendHex(StringBuffer sb, byte b) {
  sb.append(HEX.charAt((b>>4)&0x0f)).append(HEX.charAt(b&0x0f));
 }

}

Comments

  1. Norman1 April 2013 at 14:26

    Every time I encrypt a raw string such as "aaa" it comes back with a different encrypted string. Is this the expected behavior?

    ReplyDelete
  2. Norman1 April 2013 at 14:36

    Also for decryption, I am consistently getting "PAD BLOCK CORRUPTED" after encrypting 'a' and then trying to decrypt it immediately using the String returned.

    ReplyDelete

Post a Comment

Popular posts from this blog

Bluetooth Data Transfer Example

Image
The following example uses the Android Bluetooth APIs to construct a simple peer-to-peer messaging system that works between two paired Bluetooth devices. Unfortunately the Android emulator can’t currently be used to test Bluetooth functionality. In order to test this application you will need to have two physical devices. 1. Start by creating a new BluetoothTexting project featuring a BluetoothTexting Activity. Modify the manifest to include BLUETOOTH and BLUETOOTH_ADMIN permissions. <?xml version="1.0" encoding="utf-8"?> <manifest xmlns:android="http://schemas.android.com/apk/res/android" package="com.paad.chapter13_bluetoothtexting" android:versionCode="1" android:versionName="1.0"> <application android:icon="@drawable/icon" android:label="@string/app_name"> <activity android:name=".BluetoothTexting" android:label="@string/app_name"> <in
Read more
JNI Types and Data Structures   Table 3-1 Primitive Types and Native Equivalents Java Type Native Type Description boolean jboolean unsigned 8 bits byte jbyte signed 8 bits char jchar unsigned 16 bits short jshort signed 16 bits int jint signed 32 bits long jlong signed 64 bits float jfloat 32 bits double jdouble 64 bits void void N/A   Type Signatures The JNI uses the Java VM’s representation of type signatures. Table 3-2 shows these type signatures. Table 3-2 Java VM Type Signatures Type Signature Java Type Z boolean B byte C char S short I int J long F float D double    L fully-qualified-class ; fully-qualified-class [ type type[] ( arg-types ) ret-type method type For example, the Java method:
Read more

How to Create & Extract tar.gz and tar.bz2 Files in Linux

>How to create a compressed tar.gz file from a folder or file in Linux?   tar czf new-tar-file-name.tar.gz file-or-folder-to-archive Here is the command explanation: tar - the tar command. c - create new archive. z - compress the archive using gzip. f - use archive file. new-tar-file-name.tar.gz - the name of the tar.gz to create. file-or-folder-to-archive - the name of the folder we want to archive. >How to create a compressed tar.gz file from multiple files and folders in Linux?   tar -czf new-tar-file-name.tar.gz file1 file2 folder1 folder2 >How to extract a compressed tar.gz file in Linux? tar -xzf tar-file-name.tar.gz Here is the command explanation: tar - the tar command. x - extract the archive. z - uncompress the archive using gzip. f - use archive file. tar-file-name.tar.gz - the name of the tar.gz to create. The tar command will extract all the files/folders in the archive to the current directory.   >How to extract a compress
Read more