UNPKG

@webbuf/aescbc

Version:

Rust/wasm optimized AES+CBC encryption/decryption for web, node.js, deno and bun.

github.com/ryanxcharles/webbuf

ryanxcharles/webbuf

117 lines (78 loc) 3.39 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
# @webbuf/aescbc `@webbuf/aescbc` is a TypeScript package that provides **AES encryption in CBC mode** with a Rust-backed WebAssembly (Wasm) implementation for high performance in browsers and JavaScript environments like Node.js, Deno, and Bun. This package offers low-level cryptographic functions using the WebAssembly import, making it suitable for applications requiring fast AES-CBC encryption and decryption. > **Note**: This package does not provide message authentication. To ensure data > authenticity, pair it with a hash function, such as HMAC. --- ## Installation To install, run: ```bash npm install @webbuf/aescbc ``` Make sure your project supports WebAssembly imports via inline base64. --- ## Overview `@webbuf/aescbc` provides two main functions for AES encryption in CBC mode: `aescbcEncrypt` and `aescbcDecrypt`. The package requires Wasm bindings from the Rust `webbuf_aescbc` library, which provides the AES operations. This package is designed for developers comfortable with cryptographic functions and low-level control. --- ## Functions ### 1. `aescbcEncrypt` Encrypts plaintext using AES-CBC with the provided AES key and initialization vector (IV). If no IV is supplied, a random 16-byte IV is generated automatically. #### Parameters: - **`plaintext`**: The data to encrypt (instance of `WebBuf`). - **`aesKey`**: The AES key (16, 24, or 32 bytes) as `FixedBuf<16>`, `FixedBuf<24>`, or `FixedBuf<32>`. - **`iv`**: (Optional) The initialization vector (`FixedBuf<16>`). #### Returns: - Encrypted data (`WebBuf`) with the IV prepended to the ciphertext. #### Usage Example: ```typescript import { aescbcEncrypt } from "@webbuf/aescbc"; import { WebBuf, FixedBuf } from "webbuf"; // Define 16-byte AES key and plaintext const aesKey = FixedBuf.fromUint8Array(new Uint8Array(16)); const plaintext = WebBuf.fromString("Encrypt this with AES-CBC"); // Encrypt const ciphertext = aescbcEncrypt(plaintext, aesKey); console.log("Ciphertext:", ciphertext); ``` ### 2. `aescbcDecrypt` Decrypts AES-CBC ciphertext with the specified AES key. #### Parameters: - **`ciphertext`**: The data to decrypt (`WebBuf`). - **`aesKey`**: The AES key (16, 24, or 32 bytes) as `FixedBuf<16>`, `FixedBuf<24>`, or `FixedBuf<32>`. #### Returns: - Decrypted data (`WebBuf`) containing the original plaintext. #### Usage Example: ```typescript import { aescbcDecrypt } from "@webbuf/aescbc"; import { WebBuf, FixedBuf } from "webbuf"; // Decrypt using the same AES key const decryptedText = aescbcDecrypt(ciphertext, aesKey); console.log("Decrypted:", decryptedText.toString()); ``` --- ## Important Notes - **IV Management**: If no IV is provided during encryption, a random IV is generated. The IV is concatenated to the ciphertext by default. Ensure you manage the IV correctly during decryption. - **Low-Level Library**: This package provides low-level cryptographic functions. If you are not familiar with block cipher encryption or AES, you may want to use a higher-level library that handles CBC mode and data integrity checks. - **Message Authentication**: This library does not include authentication, so ensure you verify data authenticity with a hash function (e.g., HMAC) if you use this in a security-sensitive context. ## License This package is licensed under the MIT License. See [LICENSE](LICENSE) for more information.