Examples
Talk is cheap. Show me the code!
Below there are some implementation examples
string decKey = "DECRYPTION_KEY";
string encKey = "ENCRYPTION_KEY";
string IV = form.Get("ANNAEXEC"); // IV that AnnA will send to you
// Get post variables values (if any)
string anotherVar = Decrypt3DES(form.Get("AnotherVar"), decKey, IV);
string containers = JsonConvert.SerializeObject(
new List<object>
{
new
{
PropName = "Container001",
PropValue = new List<object>
{
new
{
PropName = "Type",
PropValue = "MESSAGE"
},
new
{
PropName = "Phrase",
PropValue = "The value of AnotherVar is: " + anotherVar
}
}
}
}
);
// Generate new IV
TripleDESCryptoServiceProvider cryptoServiceProvider = new TripleDESCryptoServiceProvider();
cryptoServiceProvider.GenerateIV();
string newBase64IV = Convert.ToBase64String(cryptoServiceProvider.IV);
string encryptedContainers = Encrypt3DES(containers, encKey, newBase64IV);
string newEncryptedBase64IV = Encrypt3DES(newBase64IV, decKey, IV);
var response = new HttpResponseMessage(HttpStatusCode.OK);
response.Content = new StringContent(encryptedContainers + IV + newEncryptedBase64IV, Encoding.UTF8, "text/plain");
return response; string decKey = "DECRYPTION_KEY";
string encKey = "ENCRYPTION_KEY";
string IV = Request.Form["ANNAEXEC"]; // IV that AnnA will send to you
// Get post variables values (if any)
string anotherVar = Decrypt3DES(Request.Form["AnotherVar"], decKey, IV);
string containers = JsonConvert.SerializeObject(
new List<object>()
{
new
{
PropName = "Container001",
PropValue = new List<object>()
{
new
{
PropName = "Type",
PropValue = "MESSAGE"
},
new
{
PropName = "Phrase",
PropValue = ("The value of AnotherVar is: " + anotherVar)
}
}
}
}
);
// Generate new IV
var cryptoServiceProvider = TripleDES.Create();
cryptoServiceProvider.GenerateIV();
string newBase64IV = Convert.ToBase64String(cryptoServiceProvider.IV);
string encryptedContainers = Encrypt3DES(containers, encKey, newBase64IV);
string newEncryptedBase64IV = Encrypt3DES(newBase64IV, decKey, IV);
return encryptedContainers + IV + newEncryptedBase64IV;try {
String decKey = "DECRYPTION_KEY";
String encKey = "ENCRYPTION_KEY";
String receivedIv = request.getParameter("ANNAEXEC"); // IV that AnnA will send to you
// Get post variables values (if any)
String anotherVar = request.getParameter("AnotherVar");
byte[] ivDecoded = Base64.getDecoder().decode(receivedIv);
byte[] decKeyDecoded = Base64.getDecoder().decode(decKey);
byte[] encKeyDecoded = Base64.getDecoder().decode(encKey);
IvParameterSpec iv = new IvParameterSpec(ivDecoded);
SecretKey dKey = new SecretKeySpec(decKeyDecoded, "DESede");
SecretKey eKey = new SecretKeySpec(encKeyDecoded, "DESede");
String decrypted = decrypt(anotherVar, dKey, iv);
String finalResponse = "[{";
finalResponse += "\"PropName\":\"Container001\",";
finalResponse += "\"PropValue\":\"";
finalResponse += " [";
finalResponse += " {";
finalResponse += " \\\"PropName\\\":\\\"Type\\\",";
finalResponse += " \\\"PropValue\\\":\\\"MESSAGE\\\"";
finalResponse += " },";
finalResponse += " {";
finalResponse += " \\\"PropName\\\":\\\"Phrase\\\",";
finalResponse += " \\\"PropValue\\\":\\\"The value of AnotherVar is: \\\"" + decrypted + "\\\"";
finalResponse += " }";
finalResponse += " ]\"";
finalResponse += "}]";
byte[] randomBytes = new byte[8];
new Random().nextBytes(randomBytes);
final IvParameterSpec newIv = new IvParameterSpec(randomBytes);
String newEncodedIv = new String(Base64.getEncoder().encode(randomBytes));
finalResponse = encrypt(finalResponse, eKey, newIv);
String newEncryptedIv = encrypt(newEncodedIv, dKey, iv);
finalResponse = finalResponse + receivedIv + newEncryptedIv;
PrintWriter out = response.getWriter();
out.print(finalResponse);
} catch (NoSuchAlgorithmException | NoSuchPaddingException | InvalidKeyException | InvalidAlgorithmParameterException | UnsupportedEncodingException | IllegalBlockSizeException | BadPaddingException ex) {
Logger.getLogger(DESExample.class.getName()).log(Level.SEVERE, null, ex);
} function __output_header__($_data)
{
header('Content-Type: application/json; charset=utf-8');
return $_data;
}
if ($_SERVER['REQUEST_METHOD'] !== "POST") {
__output_header__(false, "Invalid request method", null);
}
$DecKey = 'DECRYPTION_KEY';
$EncKey = 'ENCRYPTION_KEY';
$ReceivedIv = $_POST['ANNAEXEC']; // IV that AnnA will send to you
// Get post variables values (if any)
$MyVar1 = $_POST['AnotherVar'];
$MyVar1 = decrypt3DES($MyVar1, $DecKey, $ReceivedIv);
$response = '[';
$response .= ' {';
$response .= ' "PropName": "Container001",';
$response .= ' "PropValue": "[{\"PropName\":\"Type\",\"PropValue\":\"MESSAGE\"},{\"PropName\":\"Phrase\",\"PropValue\":\"The value of AnotherVar is: \"' + MyVar1 + '\"}]"'
$response .= ' }'
$response .= ']'
// Generate new IV
$ivlen = openssl_cipher_iv_length('des-ede3-cbc');
$newIv = base64_encode(openssl_random_pseudo_bytes(8));
$response = encrypt3DES($response, $EncKey, $newIv);
$newEncryptedIv = encrypt3DES($newIv, $DecKey, $ReceivedIv);
$response = $response . $ReceivedIv . $newEncryptedIv;
die(__output_header__($response)); &DecKEY = 'DECRYPTION_KEY'
&EncKEY = 'ENCRYPTION_KEY'
&IVRecebido = &HTTPRequest.GetVariable(!'ANNAEXEC') // IV that AnnA will send to you
// &CryptoDecrypt is type of "CryptoSymmetricEncrypt"
&CryptoDecrypt.Algorithm = CryptoEncryptAlgorithm.TripleDES
&CryptoDecrypt.Key = &DecKEY
&CryptoDecrypt.IV = &IVRecebido
// Get post variables values (if any)
&MyVar1 = &HTTPRequest.GetVariable(!'AnotherVar')
&MyVar1 = &CryptoDecrypt.Decrypt(&MyVar1)
&Sdt_PropsContainer = new()
&Sdt_PropsItem = new()
&Sdt_PropsItem.PropName = !'Type'
&Sdt_PropsItem.PropValue = !'MESSAGE'
&Sdt_PropsContainer.Add(&Sdt_PropsItem)
&Sdt_PropsItem = new()
&Sdt_PropsItem.PropName = !'Phrase'
&Sdt_PropsItem.PropValue = 'O valor de "AnotherVar" é: ' + &MyVar1
&Sdt_PropsContainer.Add(&Sdt_PropsItem) //Adiciono o Container
&Sdt_PropsToAnna = new()
&Sdt_PropsItem = new()
&Sdt_PropsItem.PropName = !'Container001'
&Sdt_PropsItem.PropValue = &Sdt_PropsContainer.ToJson()
&Sdt_PropsToAnna.Add(&Sdt_PropsItem)
&response = &Sdt_PropsToAnna.ToJson() //JSON de resposta ao AnnA
// Generate new IV
&CryptoEncrypt = new()
&CryptoEncrypt.Algorithm = CryptoEncryptAlgorithm.TripleDES
&CryptoEncrypt.Key = &EncKEY
&response = &CryptoEncrypt.Encrypt(&response)
&IVNovo = &CryptoEncrypt.IV
&IVNovoEncriptado = &CryptoDecrypt.Encrypt(&IVNovo)
&response = &response + &IVRecebido + &IVNovoEncriptado
&HTTPResponse.AddString(&response) from flask import Flask, request, Response
from flask_ngrok import run_with_ngrok
import json
from Crypto.Cipher import AES, DES3, DES
from Crypto.Util.Padding import pad, unpad
from Crypto.Random import get_random_bytes
from base64 import b64encode, b64decode
# Initialising a web application with flask
app = Flask(__name__)
# For this integration example, NGROK was used to emulate a response server
run_with_ngrok(app)
# Encryption method
def encrypt(data, enckey, iv):
enckey = b64decode(enckey)
iv = b64decode(iv)
cipher = DES3.new(enckey, DES3.MODE_CBC, iv)
ct_bytes = cipher.encrypt(
pad(bytes(data, encoding='utf-8'), DES3.block_size))
ciphertext = b64encode(ct_bytes).decode('utf-8')
return ciphertext
# Decryption method
def decrypt(data, deckey, iv):
try:
deckey = b64decode(deckey)
iv = b64decode(iv)
data = b64decode(data)
cipher = DES3.new(deckey, DES3.MODE_CBC, iv)
pt = unpad(cipher.decrypt(data), DES3.block_size)
return pt
except (ValueError, KeyError):
return 'Incorrect decryption'
# Get POST AnnA
@app.route('/get-post', methods=['POST'])
def receber_post():
# Encryption Keys
enckey = 'ENCRYPTION_KEY'
deckey = 'DECRYPTION_KEY'
# Retrieving the form sent by AnnA
data = request.form
# Recovering the received IV
ivReceived = data.get('ANNAEXEC')
# Creating the structure of an AnnA message
nodeMessage = [
{
"PropName": "Alias",
"PropValue": "msg001"
},
{
"PropName": "Type",
"PropValue": "MESSAGE"
},
{
"PropName": "Phrase",
"PropValue": "Hello World!"
}
]
# Creating the container structure
container = [
{
"PropName": "Container001",
"PropValue": json.dumps(nodeMessage)
}
]
# Creating a new IV and encrypting it
key = get_random_bytes(8)
cipher = DES.new(key, DES3.MODE_CBC)
newIV = b64encode(cipher.iv).decode('utf-8')
# Serialising the container structure and encrypting it
serialisedContainer = json.dumps(container)
encryptedSerialisedContainer = encrypt(serialisedContainer, enckey, newIV)
# Encrypting the new IV
newIVEncrypted = encrypt(newIV, deckey, ivReceived)
# Configuring response for AnnA
replyToAnnA = encryptedSerialisedContainer + ivReceived + newIVEncrypted
# Replying to AnnA
response = Response(replyToAnnA, content_type='text/plain')
# Log
print('\nData received from AnnA:', data)
print('\nIV Received:', ivReceived)
print('\n')
print('\nNode Message:', nodeMessage)
print('\nContainer:', container)
print('\nContainer Serialised:', serialisedContainer)
print('\nContainer Serialised Encrypted:', encryptedSerialisedContainer)
print('\n')
print('\nNew IV:', newIV)
print('\nNew IV Encrypted:', newIVEncrypted)
print('\n')
print('\nReply To AnnA:', replyToAnnA)
print('\nResponse From AnnA:', response)
return response
if __name__ == '__main__':
app.run()