Symmetric Encrypt/Decrypt
The symmetric encrypt/decrypt processor is used to encrypt plaintext and decrypt ciphertext by using the specified symmetric encryption algorithm.
Configuration Parameters
| Parameter | Description |
|---|---|
| Operation | Options are symmetric encrypt, symmetric decrypt, HMAC signing, and HMAC signature verification. |
| Encryption Algorithm | Symmetric encrypt or decrypt supports only the AES algorithm. HMAC signing or signature verification supports only HMAC algorithm. |
| Encryption Mode | Mandatory when Operation is set to Symmetric Encrypt or Symmetric Decrypt. Currently, only GCM is supported. |
| PBKDF2 Password | Mandatory when Operation is set to Symmetric Encrypt or Symmetric Decrypt. Used to generate the PBKDF2 key. |
| PBKDF2 Hash Algorithm | Mandatory when Operation is set to Symmetric Encrypt or Symmetric Decrypt. SHA256 and SHA384 are supported. |
| PBKDF2 Salt | Mandatory when Operation is set to Symmetric Encrypt or Symmetric Decrypt. Used to generate the PBKDF2 key. |
| Secret Key Length | Mandatory when Operation is set to Symmetric Encrypt or Symmetric Decrypt. Length of the generated key. Options are 128, 192, or 256. |
| Plaintext | Plaintext to be encrypted, or signed, or verified. |
| Ciphertext | Ciphertext to be decrypted. |
| Content Padding Mode | Mandatory when Operation is set to Symmetric Encrypt or Symmetric Decrypt. Currently, only PKCS5Padding is supported. |
| PBKDF2 Iteration Count | Mandatory when Operation is set to Symmetric Encrypt or Symmetric Decrypt. Used to generate the PBKDF2 secret key. The default value is 1000000. |
| TAG Length | Mandatory when Operation is set to Symmetric Encrypt. Used to generate a random tag. The default value is 16. |
| IV Length | Mandatory when Operation is set to Symmetric Encrypt. Used to generate a random IV. The default value is 12. |
| AAD Length | Mandatory when Operation is set to Symmetric Encrypt. Used to generate a random AAD. The default value is 16. |
| Secret Key | Mandatory when Operation is set to HMAC Signing or HMAC Signature Verification. HMAC signature key. |
| Signature | Mandatory only when Operation is set to HMAC Signature Verification. HMAC signing result. |
| Signature Algorithm | Mandatory when Operation is set to HMAC Signing or HMAC Signature Verification. HMAC signing algorithm. Options are SHA256 and SHA384. |
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
