Online SHA384 Hash Generator

My function is as follows:

pbkdf2($raw_pw,$salt,1000,128)

1000 is the number of passes, and 128 is the key size. The function returns a binary key which I use base64 to store it in the database.

My question is: what's the recommended keysize and salt size for pbkdf2 using sha512?

will a keysize of 32 be just as secure as a keysize of 128?

I'm developing a WebService client in C++ for "Electronic Invoice" in Argentina. The webservice client and the xml treatment is not a problem but the cryptographic part give some headache (I'm quite new in this topic).

I'm reading the Botan documentation and found an example somewhat similar to what I need but I'm having difficulties adapting it.

I need to encrypt the XML in SHA1+RSA using the certificates and encode the result in Base64.

The official documentation provide examples in many languages unfortunately C++ is not one of them, I use the php example as start point to create my PoC code in C++.

The exact problem is this.

I have this XML example:

<loginTicketRequest version="1.0"><header><uniqueId>1560949868</uniqueId><generationTime>2019-06-19T10:10:08-03:00</generationTime><expirationTime>2019-06-19T10:12:08-03:00</expirationTime></header><service>wsfe</service></loginTicketRequest>

this XML became in this Base64 string

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

using this PHP function

  $STATUS=openssl_pkcs7_sign("TRA.xml", "TRA.tmp", "file://".CERT,    array("file://".PRIVATEKEY, PASSPHRASE),    array(),    !PKCS7_DETACHED    );

Where CERT and PRIVATEKEY are the public and private keys, PASSPHRASE is an empty string and the file TRA.xml contains the XML example provided above.

You can download the public and private key from this linkExample Certificates

Botan Example in C++

#include <botan/pkcs8.h>#include <botan/hex.h>#include <botan/pk_keys.h>#include <botan/pubkey.h>#include <botan/auto_rng.h>#include <botan/rng.h>#include <iostream>int main (intargc,char*argv[]){    if(argc!=2)        return1;    std::string plaintext("Your great-grandfather gave this watch to your granddad for good luck. Unfortunately, Dane's luck wasn't as good as his old man's.");    std::vector<uint8_t> pt(plaintext.data(),plaintext.data()+plaintext.length());    std::unique_ptr<Botan::RandomNumberGenerator> rng(newBotan::AutoSeeded_RNG);    //load keypair    std::unique_ptr<Botan::Private_Key> kp(Botan::PKCS8::load_key(argv[1],*rng.get()));    //encrypt with pk    Botan::PK_Encryptor_EME enc(*kp,*rng.get(), "EME1(SHA-256)");    std::vector<uint8_t> ct = enc.encrypt(pt,*rng.get());    //decrypt with sk    Botan::PK_Decryptor_EME dec(*kp,*rng.get(), "EME1(SHA-256)");    std::cout << std::endl << "enc: " << Botan::hex_encode(ct) << std::endl << "dec: "<< Botan::hex_encode(dec.decrypt(ct));    return 0; //Edited :D, Thanks jww}

I need to encrypt the XML in SHA1+RSA using the certificates and encode the result in Base64. Any help will be very appreciated.

I have been given a set of steps to obtain a hash of data. I have trying to comprehend the steps for quite long now, but the hash that I am getting doesn't seem to match expected hash.

The steps that was mentioned is as follows:

1. Use the FIN message input as a binary value (unsigned char in C language, byte in Java). The FIN message input must be coded in the ASCII character set.
2. Combine the left LAU key and the right LAU key as one string. The merged LAU key must be used as a binary value (unsigned char in C language, byte in Java). The merged LAU key must be coded in the ASCII character set.
3. Call a HMAC256 routine to compute the hash value. The hash value must also be treated as a binary value (unsigned char in C language, byte in Java). The hmac size is 32 bytes.
4. Convert the hmac binary values to uppercase hexadecimal printable characters (for example, a onebyte binary value of 0000 1010 has a hexadecimal value of 0x0A and will be translated to the twobyte characters “0A”).

This is what I have tried.

import javax.crypto.Mac;import javax.crypto.spec.SecretKeySpec;import javax.xml.bind.DatatypeConverter;import java.security.InvalidKeyException;import java.security.NoSuchAlgorithmException;import org.apache.commons.codec.binary.Hex;import java.io.File;import java.io.FileInputStream;import java.io.UnsupportedEncodingException;import java.math.BigInteger;import java.nio.charset.StandardCharsets;public class ABCHash{        public static void main(String[] args) throws Exception                {                try{                        int character;                        StringBuffer buffer = new StringBuffer("");                        FileInputStream inputStream = new FileInputStream(new File("C:/EncPDF.txt"));                        while( (character = inputStream.read()) != -1)                                buffer.append((char) character);                        inputStream.close();                        System.out.println("Fetching data from the file"+buffer);                        StringBuffer sbuf = new StringBuffer(buffer);                        String str=sbuf.toString();                        System.out.println( "Data = "+ str);                        if(str!=null)                        {                                String key = "0123456789ABCDEF0123456789ABCDEF"; // Assuming the key as 0123456789ABCDEF                                byte[] hexvalue= stringToHexByte(str);                                byte[] hexkey=stringToHexByte(key);                                byte[] byHMAC = encode(hexkey, hexvalue);                                String stEncryptedData = Hex.encodeHexString(byHMAC).toUpperCase();                                System.out.println("Encrypted data =\n "+stEncryptedData);                        }                }                catch(Exception e)                {                        System.out.println("Exception in the file reading"+e);                }        }        private static byte[] encode(byte[] hexkey, byte[] hexvalue) {                try {                        Mac sha256_HMAC = Mac.getInstance("HmacSHA256");                        SecretKeySpec secret_key = new SecretKeySpec(hexkey, "HmacSHA256");                        sha256_HMAC.init(secret_key);                        return sha256_HMAC.doFinal(hexvalue);                } catch (NoSuchAlgorithmException e) {                        e.printStackTrace();                } catch (InvalidKeyException e) {                        e.printStackTrace();                }                return null;        }        public static String stringToHex(String base) throws UnsupportedEncodingException        {                return String.format("%040x", new BigInteger(1, base.getBytes(StandardCharsets.US_ASCII)));        }        public static byte[] stringToHexByte(String base) throws UnsupportedEncodingException        {                System.out.println(stringToHex(base).toUpperCase());                return DatatypeConverter.parseHexBinary(stringToHex(base).toUpperCase());        }}

It will be really helpful if someone can point whats wrong with the implementation.

I am trying to practice java cryptography, but I noticed when I try to get the byte array of certain strings the byte array is always the same, why is this?

Here is my code snippet :

import java.security.MessageDigest;import java.security.NoSuchAlgorithmException;public class Main {    public static void main(String[] args) {        try {            MessageDigest messageDigest = MessageDigest.getInstance("SHA-1");            String message = "you are welcome";            messageDigest.update(message.getBytes());            byte[] md = messageDigest.digest();            System.out.println(md);        } catch (NoSuchAlgorithmException e) {            System.out.println("no such algorithm");            e.printStackTrace();        }    }}

and no matter the value of my message variable, the result always printed out is [B@1540e19d

but what makes me more curious is when I convert my byte[] md into hex values,

    import java.security.MessageDigest;import java.security.NoSuchAlgorithmException;public class Main {    public static void main(String[] args) {        try {            MessageDigest messageDigest = MessageDigest.getInstance("SHA-1");            String message = "thank you";            messageDigest.update(message.getBytes());            byte[] md = messageDigest.digest();            System.out.println(md);            //Converting the byte array in to HexString format            StringBuffer hexString = new StringBuffer();            for (int i = 0;i< md.length;i++) {                hexString.append(Integer.toHexString(0xFF & md[i]));            }            System.out.println("Hex format : " + hexString.toString());        } catch (NoSuchAlgorithmException e) {            System.out.println("no such algorithm");            e.printStackTrace();        }    }}

it produces totally different values for my StringBuffer hexString even the byte[] md is the same for two different strings. Please, could someone explain?

Before I did what I am going to explain everything worked fine.

I needed to get my app SHA1 and I followed the instructions of this post:

SHA-1 fingerprint of keystore certificate

Specifically I:

• Clicked on the "Gradle" menu on the right of Android Studio
• Navigated :app > Tasks > Android
• Double clicked on "signingReport" menu voice

Indeed the command "signingReport" was executed and in the console I got SHA1 code (both for debug and for release).

My problem is that right now I am not able to debug my app in the device anymore.
If I click on the "Debug" button of the top menu of Android Studio it calls "signingReport" command execute, instead of let me choose the device to debug app with.

I do not know howto comeback to the previous debug option.

UPDATED

I solved: what I've done is just going to the "Gradle" menu on the right and delete all "Run configuration" voices that Android Studio created after I run the command.