Unicode C
Unicode C
Encrypt File using X.509 Certificate using AES in CBC Mode
See more Encryption Examples
Demonstrates how to encrypt a file using an X.509 Certificate's public key, where the underlying bulk encryption algorithm is 128-bit AES in CBC mode. (The underlying bulk encryption algorithm can be specified to be other algorithms/strengths.)Chilkat Unicode C Downloads
#include <C_CkCrypt2W.h>
#include <C_CkCertW.h>
void ChilkatSample(void)
{
BOOL success;
HCkCrypt2W crypt;
HCkCertW cert;
success = FALSE;
// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
crypt = CkCrypt2W_Create();
// Use public-key cryptography for encryption.
CkCrypt2W_putCryptAlgorithm(crypt,L"pki");
// Get an X.509 certificate to use for encrypting.
// Note: Chilkat provides many different ways of loading a certificate, from many different formats,
// or if on Windows, from the installed certificates on the system.
// This example simply loads a certificate from a file.
// Also, for encryption, only the public key is needed. Digital certificates embed the public key
// within the X.509 format itself. Therefore, if you have a certificate, you also have the public key.
cert = CkCertW_Create();
success = CkCertW_LoadFromFile(cert,L"qa_data/certs/testCert.cer");
if (success != TRUE) {
wprintf(L"%s\n",CkCertW_lastErrorText(cert));
CkCrypt2W_Dispose(crypt);
CkCertW_Dispose(cert);
return;
}
success = CkCrypt2W_SetEncryptCert(crypt,cert);
if (success != TRUE) {
wprintf(L"%s\n",CkCrypt2W_lastErrorText(crypt));
CkCrypt2W_Dispose(crypt);
CkCertW_Dispose(cert);
return;
}
// Indicate the underlying bulk encryption algorithm to be used:
CkCrypt2W_putPkcs7CryptAlg(crypt,L"aes");
CkCrypt2W_putKeyLength(crypt,128);
// Note: When doing public-key encryption the underlying bulk symmetric cipher mode will always be CBC. (at least with Chilkat...)
// There's one last option that could be set. If is the RSA encryption encryption/padding scheme.
// By default, RSAES_PKCS1-V1_5 is used. If desired, the OaepPadding property could be set to TRUE to
// use RSAES_OAEP. (We'll leave it set at the default value of FALSE)
CkCrypt2W_putOaepPadding(crypt,FALSE);
// Everything is specified. Now just encrypt...
// The output is PKCS7 in binary DER format.
success = CkCrypt2W_CkEncryptFile(crypt,L"qa_data/hamlet.xml",L"qa_output/hamlet.p7");
if (success != TRUE) {
wprintf(L"%s\n",CkCrypt2W_lastErrorText(crypt));
CkCrypt2W_Dispose(crypt);
CkCertW_Dispose(cert);
return;
}
wprintf(L"Finished.\n");
CkCrypt2W_Dispose(crypt);
CkCertW_Dispose(cert);
}