objective c - AES encryption/decryption for a beginner -
i trying encrypt nsstring both nsstring , nsdata in objective-c , began search.
i started off here, went way on head, unfortunately.
i found myself at post , came across easy follow, went along , tried figure out implementation. after looking on implementation, saw sec reply in post , saw had more adaptable implementations, brought me his gist. per gist readme, "took downwards gist due concerns security of encryption/decryption". leads me believe security of implementation above has security flaws well.
from gist, however, mentioned another alternative utilize encryption. after taking @ code, noticed generates nsdata "a header, encryption salt, hmac salt, iv, ciphertext, , hmac". know how handle decode using same library again, how pass off server guy, given don't quite know i'm sending him?
at root of all, i'm in on head. given said above , knowing don't have time take on lot of learning this, unless if absolutely necessary, how should best handle going encoding/decoding process, given private key end goal of shipping off server not designed me? (how's run on sentence!)
maybe should inquire server guy? when ever have encryption between parties have have kind of understanding on format of data, raw primitives don't handle alone, not mention it's easy mess things security wise dealing primitives , want send aes ciphertext lone going cause mistakes.
rncryptor, mention, high level encryption library defines simple format others have conform too, it's simple helps going cross platform, has need aes properly. there other libraries (nacl, gpgme, , keyczar), not simple in format, simple in usage, you'd need able utilize library on both ends, i'd highly recommend uses that, if can, rather rolling own.
keyczar exists java, python, c++, c# , go, if can utilize c++ version on ios (or mac, ever targeting on client) might on server there several choices.
objective-c encryption aes rncryptor
No comments:
Post a Comment