(C++) PBES1 Password-Based Encryption (PBE)

Demonstrates how to implement password-based encryption according to the PKCS #5 v2.0: Password-Based Cryptography Standard (published by RSA Laboratories). This example uses PBES1, which ise based on the PBKDF1 function and an underlying block cipher such as RC2, DES, etc.

Chilkat C/C++ Library Downloads
MS Visual C/C++ C++ Builder Linux C/C++ Alpine Linux C/C++	MacOS C/C++ iOS C/C++ Android C/C++ MinGW C/C++

#include <CkCrypt2.h>

void ChilkatSample(void)
    {
    // This example assumes the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    CkCrypt2 crypt;

    // Set properties for PBES1 encryption:

    crypt.put_CryptAlgorithm("pbes1");
    crypt.put_PbesPassword("mySecretPassword");

    // Set the underlying PBE algorithm (and key length):
    // For PBES1, the underlying algorithm must be either
    // 56-bit DES or 64-bit RC2 
    // (this is according to the PKCS#5 specifications at
    // http://www.rsa.com/rsalabs/node.asp?id=2127   )
    crypt.put_PbesAlgorithm("rc2");
    crypt.put_KeyLength(64);

    // The salt for PBKDF1 is always 8 bytes:
    crypt.SetEncodedSalt("0102030405060708","hex");

    // A higher iteration count makes the algorithm more
    // computationally expensive and therefore exhaustive
    // searches (for breaking the encryption) is more difficult:
    crypt.put_IterationCount(1024);

    // A hash algorithm needs to be set for PBES1:
    crypt.put_HashAlgorithm("sha1");

    // Indicate that the encrypted bytes should be returned
    // as a hex string:
    crypt.put_EncodingMode("hex");

    const char *plainText = "To be encrypted.";

    const char *encryptedText = crypt.encryptStringENC(plainText);

    std::cout << encryptedText << "\r\n";

    // Now decrypt:
    const char *decryptedText = crypt.decryptStringENC(encryptedText);

    std::cout << decryptedText << "\r\n";
    }