|
Chilkat • HOME • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi DLL • Go • Java • Node.js • Objective-C • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(Swift) How to Generate an Elliptic Curve Shared SecretDemonstrates how to generate an ECC (Elliptic Curve Cryptography) shared secret. Imagine a cilent has one ECC private key, the server has another. A shared secret is computed by each side providing it's public key to the other. The private keys are kept private.
func chilkatTest() { // This example requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. // This example includes both client-side and server-side code. // Each code segment is marked as client-side or server-side. // Imagine these segments are running on separate computers... var success: Bool // ----------------------------------------------------------------- // (Client-Side) Generate an ECC key, save the public part to a file. // ----------------------------------------------------------------- let prngClient = CkoPrng()! let eccClient = CkoEcc()! var privKeyClient: CkoPrivateKey? = eccClient.genEccKey("secp256r1", prng: prngClient) if eccClient.lastMethodSuccess != true { print("\(eccClient.lastErrorText!)") return } var pubKeyClient: CkoPublicKey? = privKeyClient!.getPublicKey() pubKeyClient!.savePemFile(false, path: "qa_output/eccClientPub.pem") pubKeyClient = nil // ----------------------------------------------------------------- // (Server-Side) Generate an ECC key, save the public part to a file. // ----------------------------------------------------------------- let prngServer = CkoPrng()! let eccServer = CkoEcc()! var privKeyServer: CkoPrivateKey? = eccServer.genEccKey("secp256r1", prng: prngServer) if eccServer.lastMethodSuccess != true { print("\(eccServer.lastErrorText!)") return } var pubKeyServer: CkoPublicKey? = privKeyServer!.getPublicKey() pubKeyServer!.savePemFile(false, path: "qa_output/eccServerPub.pem") pubKeyServer = nil // ----------------------------------------------------------------- // (Client-Side) Generate the shared secret using our private key, and the other's public key. // ----------------------------------------------------------------- // Imagine that the server sent the public key PEM to the client. // (This is simulated by loading the server's public key from the file. let pubKeyFromServer = CkoPublicKey()! pubKeyFromServer.load(fromFile: "qa_output/eccServerPub.pem") var sharedSecret1: String? = eccClient.sharedSecretENC(privKeyClient, pubKey: pubKeyFromServer, encoding: "base64") privKeyClient = nil // ----------------------------------------------------------------- // (Server-Side) Generate the shared secret using our private key, and the other's public key. // ----------------------------------------------------------------- // Imagine that the client sent the public key PEM to the server. // (This is simulated by loading the client's public key from the file. let pubKeyFromClient = CkoPublicKey()! pubKeyFromClient.load(fromFile: "qa_output/eccClientPub.pem") var sharedSecret2: String? = eccServer.sharedSecretENC(privKeyServer, pubKey: pubKeyFromClient, encoding: "base64") privKeyServer = nil // --------------------------------------------------------- // Examine the shared secrets. They should be the same. // Both sides now have a secret that only they know. // --------------------------------------------------------- print("\(sharedSecret1!)") print("\(sharedSecret2!)") } |
||||
© 2000-2025 Chilkat Software, Inc. All Rights Reserved.