• Home
• org.semoss
• semoss
• 4.3.1
• source code
• Cryptographer.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

prerna.rpa.security.Cryptographer Maven / Gradle / Ivy

package prerna.rpa.security;

import java.io.IOException;
import java.io.UnsupportedEncodingException;
import java.security.AlgorithmParameters;
import java.security.GeneralSecurityException;
import java.security.NoSuchAlgorithmException;
import java.security.spec.InvalidKeySpecException;
import java.util.Base64;
import java.util.Random;
import java.util.Scanner;

import javax.crypto.Cipher;
import javax.crypto.SecretKey;
import javax.crypto.SecretKeyFactory;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.PBEKeySpec;
import javax.crypto.spec.SecretKeySpec;

import org.apache.logging.log4j.LogManager;
import org.apache.logging.log4j.Logger;

import prerna.rpa.RPAProps;

// https://stackoverflow.com/a/1133815
public class Cryptographer {
	
	private static final Logger LOGGER = LogManager.getLogger(Cryptographer.class.getName());
	
	private static final int ITERATION_COUNT = 40000;
	private static final int KEY_LENGTH = 128;
	
	public static void main(String[] args) throws IOException {
		
		// Simulated user input for encrypted properties
		Scanner reader = new Scanner(System.in);
		boolean finished = false;
		while (!finished) {
			
			// Property name
			LOGGER.info("Enter encrypted property name: ");
			String propertyName = reader.nextLine();
			
			// Property value
			LOGGER.info("Enter encrypted property value: ");
			String propertyValue = reader.nextLine();
			
			// Set value
			RPAProps.getInstance().setEncrpytedProperty(propertyName, propertyValue);
			
			// Whether finished
			LOGGER.info("Finished? (enter y/n): ");
			String finishedString = reader.nextLine();
			if (finishedString.equals("y")) {
				finished = true;
			}
		}
		reader.close();
	}
	
    public static String encrypt(String unprotectedString, String salt, char[] password) {
    	try {
			return encrypt(unprotectedString, createSecretKey(password, salt.getBytes()));
		} catch (Exception e) {
			throw new EncryptionException(e);
		}
    }
    
    public static String decrypt(String encryptedString, String salt, char[] password) {
    	try {
			return decrypt(encryptedString, createSecretKey(password, salt.getBytes()));
		} catch (Exception e) {
			throw new EncryptionException(e);
		}
    }
    
    // Salt is used to prevent equivalent strings from being encrypted to the same string
	public static String getSalt() {
		Random rand = new Random();
		StringBuilder saltString = new StringBuilder();
		for (int i = 0; i < 10; i ++) {
			saltString.append(rand.nextInt(10));
		}
		return saltString.toString();
	}
	
	// Private helper methods

    private static String encrypt(String unprotectedString, SecretKeySpec key) throws GeneralSecurityException, UnsupportedEncodingException {
        Cipher pbeCipher = Cipher.getInstance("AES/CCM/PKCS5Padding");
        pbeCipher.init(Cipher.ENCRYPT_MODE, key);
        AlgorithmParameters parameters = pbeCipher.getParameters();
        IvParameterSpec ivParameterSpec = parameters.getParameterSpec(IvParameterSpec.class);
        byte[] cryptoText = pbeCipher.doFinal(unprotectedString.getBytes("UTF-8"));
        byte[] iv = ivParameterSpec.getIV();
        return base64Encode(iv) + ":" + base64Encode(cryptoText);
    }

    private static String decrypt(String encryptedString, SecretKeySpec key) throws GeneralSecurityException, IOException {
        String iv = encryptedString.split(":")[0];
        String property = encryptedString.split(":")[1];
        Cipher pbeCipher = Cipher.getInstance("AES/CCM/PKCS5Padding");
        pbeCipher.init(Cipher.DECRYPT_MODE, key, new IvParameterSpec(base64Decode(iv)));
        return new String(pbeCipher.doFinal(base64Decode(property)), "UTF-8");
    }
    
    private static SecretKeySpec createSecretKey(char[] password, byte[] salt) throws NoSuchAlgorithmException, InvalidKeySpecException {
        SecretKeyFactory keyFactory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA512");
        PBEKeySpec keySpec = new PBEKeySpec(password, salt, ITERATION_COUNT, KEY_LENGTH);
        SecretKey keyTmp = keyFactory.generateSecret(keySpec);
        return new SecretKeySpec(keyTmp.getEncoded(), "AES");
    }
    
    private static String base64Encode(byte[] bytes) {
        return Base64.getEncoder().encodeToString(bytes);
    }

    private static byte[] base64Decode(String property) {
        return Base64.getDecoder().decode(property);
    }
}