AsymmetricCryptography : An extension for asymmetric cryptography

vknow360 · April 26, 2020, 11:08am

1.Introduction

Hi everyone
AsymmetricCryptography is an extension which you can use to add end-to-end encryption(asymmetric encryption) in your app.It uses asymmetric encryption which ensures that your data is safe.

Latest Version: 3.1
Last Updated: 2021-06-30T12:32:00Z

2.Blocks

3.Documentation

A quick and short documentation for AsymmetricCryptography :

blocks (21)

Generates keys of provided length and raises event 'KeysGenerated' with success and response values.
Note: (i) Big key size will consume more ram.It behaves normal upto 4096.
(ii) Key length should be at least 8 times of string length.
For Example :
A key of length 1024 can encrypt a string of length 128.

Returns private key in string format

Returns public key in string format

blocks (22)

Tries to encrypt given string with provided public key and returns encrypted text

blocks (23)

Tries to decrypt given string with provided private key and returns decrypted text

Asynchronous version of Decrypt method

Asynchronous version of Encrypt method

4.Downloads

Aix can be downloaded from Github Repo:

Hope it helps!

TIMAI2 · April 26, 2020, 12:50pm

What do you do at “the other end” where you send the data?

Some examples ?

Red_Panda · April 26, 2020, 6:10pm

Looks promising, will keep an eye on that

ABG · April 26, 2020, 6:13pm

Is the algorithm public, or is this security by obscurity?

vknow360 · April 27, 2020, 3:36am

It depends on your needs.If you want to decrypt and read data sent by a user then you can do that using the extension.A perfect example can be chat system where A's message can only be read by B and B's message can only be read by A because public keys are exchanged between them.So A can decrypt B's messages and B can decrypt A's messages.

Thank you @Red_Panda

The algorithm used in RSA but I don't know it is public algorithm or not.

TIMAI2 · April 27, 2020, 8:23am

I should have been more explicit, by the “other end” I meant somewhere that wasn’t another app with the same extension. Can decrypting only take place using these blocks ?

vknow360 · April 27, 2020, 10:18am

No you can decrypt data with Java and some online tools if you have private key.

TIMAI2 · April 27, 2020, 11:48am

I get this error in label2 using your example aia, when applying private and public keys in the textboxes. I used 123 and 456 (also tried with words)

java.lang.NullPointerException: Attempt to invoke virtual method 'java.security.PublicKey java.security.KeyFactory.generatePublic(java.security.spec.KeySpec)' on a null object reference

vknow360 · April 27, 2020, 11:59am

This is probably because cipher and keyfactory have not been initialized because GenerateKeys has not been called.
You can call it a bug of single line.

vknow360 · April 27, 2020, 12:22pm

ChangeLog Version 2
Changes

Some internal changes so that you don’t have to call ‘GenerateKeys’ method to initialize extension.

Thank you @TIMAI2
You can use external key pair but I can’t say it will work or not if not generated using KeyFactory.

Red_Panda · April 28, 2020, 12:14pm

Can somebody explain to me how to use this in App Inventor? I don’t know much about asymmetric encryption. I always thought you share the public key and keep the private key secret. Another thing that confuses me is the keyLength. Does that mean I have to generate a key pair each time I want to encrypt something?

vknow360 · April 28, 2020, 1:11pm

This can be a good example:

No you can store keys either in online or offline database.

Red_Panda · April 28, 2020, 3:41pm

I mean if my text length is different each time, do I really have to generate a new key? What about different devices, how can I encrypt something on my phone and decrypt on my friend’s phone? Sorry for the questions, I’m evaluating if I can use the extension for one of my projects

vknow360 · April 29, 2020, 1:07am

I think no.You can generate a key of big length like 10240 so it can encrypt/decrypt upto 1280 bytes.But big key length can be a problem in old devices which are running below Android 5.0

First of all generate a key pair of desired length.
Now if you have a hackproof database (Firebase or MySql) then I will recommend to store there.Otherwise store keys in Obfuscated text at build time.

Red_Panda · April 29, 2020, 10:10am

You want me to store my keys in an online database? I don't think that is the purpose of asymmetric encryption...

Red_Panda · April 29, 2020, 10:14am

The two keys reminded me of PGP, can this done with your extension?

Again, sorry for bombarding you with questions

vknow360 · April 29, 2020, 11:47am

I know it is awkward that's why I said in a hackproof database where keys will be safe.
If not then store keys in Obfuscated text at build time.

Btw, if you want to create chatting app then you will have to exchange keys between receiver and sender.

vknow360 · April 29, 2020, 11:52am

I have no knowledge of PGP but somewhere I read that it uses asymmetric encryption but keys generation is very random.
So I think no.

TIMAI2 · April 29, 2020, 1:20pm

I want this to work , but ....

I tried these blocks, having previously generated a private key and public key with length 1024

When I try to encrypt a string I get:

java.lang.NullPointerException: Attempt to invoke virtual method 'java.security.PublicKey java.security.KeyFactory.generatePublic(java.security.spec.KeySpec)' on a null object reference

which seems to indicate that there is nothing available to generate an encrypted string.

TIMAI2 · April 29, 2020, 1:27pm

OK, this works

but this, with obfuscated text fails on decrypt: