js-crypto-aes
Advanced tools
WARNING: At this time this solution should be considered suitable for research and experimentation, further code and security review is needed before utilization in a production application.
This library is designed to 'universally' provide AES encryption and decryption functions, i.e., it works both on most modern browsers and on Node.js just by importing from NPM/source code. Note that in the design principle, the library fully utilizes native APIs like WebCrypto API to accelerate its operation if available.
At your project directory, do either one of the following.
$ npm install --save js-crypto-aes // npm
$ yarn add js-crypto-aes // yarn
$ git clone https://github.com/junkurihara/jscu.git
$ cd js-crypto-utils/packages/js-crypto-aes
& yarn build
Then you should import the package as follows.
import aes from 'js-crypto-aes'; // for npm
import aes from 'path/to/js-crypto-aes/dist/index.js'; // for github
The bundled file is also given as js-crypto-aes/dist/jscaes.bundle.js for a use case where the module is imported as a window.jscaes object via script tags.
const msg = ...; // arbitrary length of message in Uint8Array
const key = ...; // 16 bytes or 32 bytes key in Uint8Array
const iv = ...; // 12 bytes IV in Uint8Array for AES-GCM mode
const additionalData = ...; // optional AAD
aes.encrypt(msg, key, {name: 'AES-GCM', iv, additionalData, tagLength: 16}).then( (encrypted) => {
// now you get an Uint8Array of encrypted message
});
const data = ...; // encryted message in Uint8Array
const key = ...; // 16 bytes or 32 bytes key in Uint8Array
const iv = ...; // 12 bytes IV in Uint8Array for AES-GCM mode that is exactly same as the one used in encryption
const additionalData = ...; // optional AAD
aes.decrypt(data, key, {name: 'AES-GCM', iv, additionalData, tagLength: 16}).then( (decrypted) => {
// now you get an Uint8Array of decrypted message
});
const msg = ...; // arbitrary length of message in Uint8Array
const key = ...; // 16 bytes or 32 bytes key in Uint8Array
const iv = ...; // 16 bytes IV in Uint8Array for AES-CBC mode
aes.encrypt(msg, key, {name: 'AES-CBC', iv}).then( (encrypted) => {
// now you get an Uint8Array of encrypted message
});
const data = ...; // encryted message in Uint8Array
const key = ...; // 16 bytes or 32 bytes key in Uint8Array
const iv = ...; // 16 bytes IV in Uint8Array for AES-CBC mode that is exactly same as the one used in encryption
aes.decrypt(data, key, {name: 'AES-CBC', iv}).then( (decrypted) => {
// now you get an Uint8Array of decrypted message
});
const msg = ...; // arbitrary length of message in Uint8Array
const key = ...; // 16 bytes or 32 bytes key in Uint8Array
const iv = ...; // 12 bytes IV in Uint8Array for AES-CTR mode
aes.encrypt(msg, key, {name: 'AES-CTR', iv}).then( (encrypted) => {
// now you get an Uint8Array of encrypted message
});
The counter block will be iv||00...01. If iv.length = 16, it should be iv + 1.
const data = ...; // encryted message in Uint8Array
const key = ...; // 16 bytes or 32 bytes key in Uint8Array
const iv = ...; // 12 bytes IV in Uint8Array for AES-CTR mode that is exactly same as the one used in encryption
aes.decrypt(data, key, {name: 'AES-CTR', iv}).then( (decrypted) => {
// now you get an Uint8Array of decrypted message
});
const kEK = ...; // Key Encryption Key in 128, 192, 256 bits (192 only in Node.js)
const cEK = ...; // Key to be wrapped of 128, 192, 256 bits (192 only in Node.js)
aes.wrapKey(cEK, kEK, {name: 'AES-KW'}).then( (wrapped) => {
// wrapped key is here
});
const kEK = ...; // Key Encryption Key in 128, 192, 256 bits (192 only in Node.js)
const wrapped = ...; // Wrapped key in Uint8Array
aes.unwrapKey(wrapped, kEK, {name: 'AES-KW'}).then( (cEK) => {
// now you get the plaintext key
});
At this point, this module has the following limitations:
Licensed under the MIT license, see LICENSE file.
FAQs
Universal Module for AES Encryption and Decryption in JavaScript
The npm package js-crypto-aes receives a total of 16,863 weekly downloads. As such, js-crypto-aes popularity was classified as popular.
We found that js-crypto-aes demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.