Home Explore Help
Register Sign In
third
/
xswitch
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 2ab7a3d323
Branches Tags
xswitch
/
clients
/
flex
/
com
/
adobe
/
air
/
crypto
/
EncryptionKeyGenerator.as

EncryptionKeyGenerator.as 12 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313 
  1. /*
    2. 

  2.   Copyright (c) 2009, Adobe Systems Incorporated
    3. 

  3.   All rights reserved.
    4. 

  4. 

  5.   Redistribution and use in source and binary forms, with or without 
    6. 

  6.   modification, are permitted provided that the following conditions are
    7. 

  7.   met:
    8. 

  8. 

  9.   * Redistributions of source code must retain the above copyright notice, 
    10. 

  10.     this list of conditions and the following disclaimer.
    11. 

  11.   
    12. 

  12.   * Redistributions in binary form must reproduce the above copyright
    13. 

  13.     notice, this list of conditions and the following disclaimer in the 
    14. 

  14.     documentation and/or other materials provided with the distribution.
    15. 

  15.   
    16. 

  16.   * Neither the name of Adobe Systems Incorporated nor the names of its 
    17. 

  17.     contributors may be used to endorse or promote products derived from 
    18. 

  18.     this software without specific prior written permission.
    19. 

  19. 

  20.   THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS
    21. 

  21.   IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,
    22. 

  22.   THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
    23. 

  23.   PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR 
    24. 

  24.   CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
    25. 

  25.   EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
    26. 

  26.   PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
    27. 

  27.   PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
    28. 

  28.   LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
    29. 

  29.   NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
    30. 

  30.   SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
    31. 

  31. */
    32. 

  32. 

  33. package com.adobe.air.crypto
    34. 

  34. {
    35. 

  35. 	import com.adobe.crypto.SHA256;
    36. 

  36. 	
    37. 

  37. 	import flash.data.EncryptedLocalStore;
    38. 

  38. 	import flash.utils.ByteArray;
    39. 

  39. 			
    40. 

  40. 	/**
    41. 

  41. 	 * The EncryptionKeyGenerator class generates an encryption key value, such as you would use 
    42. 

  42. 	 * to encrypt files or data. For example, the encryption key is suitable to use as 
    43. 

  43. 	 * an encryption key for an encrypted AIR local SQL (SQLite) database.
    44. 

  44. 	 * 
    45. 

  45. 	 * <p>This class uses techniques and algorithms that are designed for maximum 
    46. 

  46. 	 * data privacy and security. Use this class to generate an encryption key if your 
    47. 

  47. 	 * application requires data to be encrypted on a per-user level (in other words, 
    48. 

  48. 	 * if only one user of the application should be able to access his or her data). 
    49. 

  49. 	 * In some situations you may also want to use per-user encryption for data even 
    50. 

  50. 	 * if the application design specifies that other users can access the data. For more 
    51. 

  51. 	 * information, see 
    52. 

  52. 	 * "<a href="http://help.adobe.com/en_US/AIR/1.5/devappsflex/WS34990ABF-C893-47ec-B813-9C9D9587A398.html">Considerations for using encryption with a database</a>" 
    53. 

  53. 	 * in the guide 
    54. 

  54. 	 * "<a href="http://help.adobe.com/en_US/AIR/1.5/devappsflex/">Developing Adobe AIR Applications with Flex</a>."</p>
    55. 

  55. 	 * 
    56. 

  56. 	 * <p>The generated encryption key is based on a password that you provide. For any given 
    57. 

  57. 	 * password, in the same AIR application 
    58. 

  58. 	 * running in the same user account on the same machine, the encryption key result is 
    59. 

  59. 	 * the same.</p>
    60. 

  60. 	 * 
    61. 

  61. 	 * <p>To generate an encryption key from a password, use the <code>getEncryptionKey()</code> 
    62. 

  62. 	 * method. To confirm that a password is a "strong" password before calling the 
    63. 

  63. 	 * <code>getEncryptionKey()</code> method, use the <code>validateStrongPassword()</code> 
    64. 

  64. 	 * method.</p>
    65. 

  65. 	 * 
    66. 

  66. 	 * <p>In addition, the EncryptionKeyGenerator includes a utility constant, 
    67. 

  67. 	 * <code>ENCRYPTED_DB_PASSWORD_ERROR_ID</code>. This constant matches the error ID of 
    68. 

  68. 	 * the SQLError error that occurs when code that is attempting to open an encrypted database 
    69. 

  69. 	 * provides the wrong encryption key.</p>
    70. 

  70. 	 * 
    71. 

  71. 	 * <p>This class is designed to create an encryption key suitable for providing the highest 
    72. 

  72. 	 * level of data privacy and security. In order to achieve that level of security, a few 
    73. 

  73. 	 * security principles must be followed:</p>
    74. 

  74. 	 * 
    75. 

  75. 	 * <ul>
    76. 

  76. 	 *   <li>Your application should never store the user-entered password</li>
    77. 

  77. 	 *   <li>Your application should never store the encryption key returned by the 
    78. 

  78. 	 *       <code>getEncryptionKey()</code> method.</li>
    79. 

  79. 	 *   <li>Instead, each time the user runs the application and attempts to access the database, 
    80. 

  80. 	 *       your application code should call the <code>getEncryptionKey()</code> method to 
    81. 

  81. 	 *       regenerate the encryption key.</li>
    82. 

  82. 	 * </ul>
    83. 

  83. 	 * 
    84. 

  84. 	 * <p>For more information about data security, and an explanation of the security techniques 
    85. 

  85. 	 * used in the EncryptionKeyGenerator class, see 
    86. 

  86. 	 * "<a href="http://help.adobe.com/en_US/AIR/1.5/devappsflex/WS61068DCE-9499-4d40-82B8-B71CC35D832C.html">Example: Generating and using an encryption key</a>" 
    87. 

  87. 	 * in the guide 
    88. 

  88. 	 * "<a href="http://help.adobe.com/en_US/AIR/1.5/devappsflex/">Developing Adobe AIR Applications with Flex</a>."</p>
    89. 

  89. 	 */
    90. 

  90. 	public class EncryptionKeyGenerator
    91. 

  91. 	{
    92. 

  92. 		// ------- Constants -------
    93. 

  93. 		/**
    94. 

  94. 		 * This constant matches the error ID (3138) of the SQLError error that occurs when 
    95. 

  95. 		 * code that is attempting to open an encrypted database provides the wrong 
    96. 

  96. 		 * encryption key.
    97. 

  97. 		 */
    98. 

  98. 		public static const ENCRYPTED_DB_PASSWORD_ERROR_ID:uint = 3138;
    99. 

  99. 		
    100. 

  100. 		private static const STRONG_PASSWORD_PATTERN:RegExp = /(?=^.{8,32}$)((?=.*\d)|(?=.*\W+))(?![.\n])(?=.*[A-Z])(?=.*[a-z]).*$/;
    101. 

  101. 		private static const SALT_ELS_KEY:String = "com.adobe.air.crypto::EncryptedDBSalt$$$";
    102. 

  102. 		
    103. 

  103. 		
    104. 

  104. 		// ------- Constructor -------
    105. 

  105. 		
    106. 

  106. 		/**
    107. 

  107. 		 * Creates a new EncryptionKeyGenerator instance.
    108. 

  108. 		 */
    109. 

  109. 		public function EncryptionKeyGenerator() {}
    110. 

  110. 		
    111. 

  111. 		
    112. 

  112. 		// ------- Public methods -------
    113. 

  113. 		
    114. 

  114. 		/**
    115. 

  115. 		 * Checks a password and returns a value indicating whether the password is a "strong" 
    116. 

  116. 		 * password. The criteria for a strong password are:
    117. 

  117. 		 * 
    118. 

  118. 		 * <ul>
    119. 

  119. 		 *   <li>Minimum 8 characters</li>
    120. 

  120. 		 *   <li>Maxmium 32 characters</li>
    121. 

  121. 		 *   <li>Contains at least one lowercase letter</li>
    122. 

  122. 		 *   <li>Contains at least one uppercase letter</li>
    123. 

  123. 		 *   <li>Contains at least one number or symbol character</li>
    124. 

  124. 		 * </ul>
    125. 

  125. 		 * 
    126. 

  126. 		 * @param password The password to check
    127. 

  127. 		 * 
    128. 

  128. 		 * @return A value indicating whether the password is a strong password (<code>true</code>) 
    129. 

  129. 		 * or not (<code>false</code>).
    130. 

  130. 		 */
    131. 

  131. 		public function validateStrongPassword(password:String):Boolean
    132. 

  132. 		{
    133. 

  133. 			if (password == null || password.length <= 0)
    134. 

  134. 			{
    135. 

  135. 				return false;
    136. 

  136. 			}
    137. 

  137. 			
    138. 

  138. 			return STRONG_PASSWORD_PATTERN.test(password);
    139. 

  139. 		}
    140. 

  140. 		
    141. 

  141. 		
    142. 

  142. 		/**
    143. 

  143. 		 * Uses a password to generate a 16-byte encryption key. The return value is suitable 
    144. 

  144. 		 * to use as an encryption key for an encrypted AIR local SQL (SQLite) database.
    145. 

  145. 		 * 
    146. 

  146. 		 * <p>For any given 
    147. 

  147. 		 * password, calling the <code>getEncryptionKey()</code> method from the same AIR application 
    148. 

  148. 		 * running in the same user account on the same machine, the encryption key result is 
    149. 

  149. 		 * the same.
    150. 

  150. 		 * 
    151. 

  151. 		 * <p>This method is designed to create an encryption key suitable for providing the highest 
    152. 

  152. 		 * level of data privacy and security. In order to achieve that level of security, your 
    153. 

  153. 		 * application must follow several security principles:</p>
    154. 

  154. 		 * 
    155. 

  155. 		 * <ul>
    156. 

  156. 		 *   <li>Your application can never store the user-entered password</li>
    157. 

  157. 		 *   <li>Your application can never store the encryption key returned by the 
    158. 

  158. 		 *       <code>getEncryptionKey()</code> method.</li>
    159. 

  159. 		 *   <li>Instead, each time the user runs the application and attempts to access the database, 
    160. 

  160. 		 *       call the <code>getEncryptionKey()</code> method to regenerate the encryption key.</li>
    161. 

  161. 		 * </ul>
    162. 

  162. 		 * 
    163. 

  163. 		 * <p>For more information about data security, and an explanation of the security techniques 
    164. 

  164. 		 * used in the EncryptionKeyGenerator class, see 
    165. 

  165. 		 * "<a href="http://help.adobe.com/en_US/AIR/1.5/devappsflex/WS61068DCE-9499-4d40-82B8-B71CC35D832C.html">Example: Generating and using an encryption key</a>" 
    166. 

  166. 		 * in the guide 
    167. 

  167. 		 * "<a href="http://help.adobe.com/en_US/AIR/1.5/devappsflex/">Developing Adobe AIR Applications with Flex</a>."</p>
    168. 

  168. 		 * 
    169. 

  169. 		 * @param password	The password to use to generate the encryption key.
    170. 

  170. 		 * @param overrideSaltELSKey	The EncryptionKeyGenerator creates and stores a random value 
    171. 

  171. 		 * 								(known as a <i>salt</i>) as part of the process of 
    172. 

  172. 		 * 								generating the encryption key. The first time an application 
    173. 

  173. 		 * 								calls the <code>getEncryptionKey()</code> method, the salt 
    174. 

  174. 		 * 								value is created and stored in the AIR application's encrypted 
    175. 

  175. 		 * 								local store (ELS). From then on, the salt value is loaded from the 
    176. 

  176. 		 * 								ELS.
    177. 

  177. 		 * 								<p>If you wish to provide a custom String ELS key for storing 
    178. 

  178. 		 * 								the salt value, specify a value for the <code>overrideSaltELSKey</code>
    179. 

  179. 		 * 								parameter. If the parameter is <code>null</code> (the default) 
    180. 

  180. 		 * 								a default key name is used.</p>
    181. 

  181. 		 * 
    182. 

  182. 		 * @return The generated encryption key, a 16-byte ByteArray object.
    183. 

  183. 		 * 
    184. 

  184. 		 * @throws ArgumentError	If the specified password is not a "strong" password according to the 
    185. 

  185. 		 * 							criteria explained in the <code>validateStrongPassword()</code> 
    186. 

  186. 		 * 							method description
    187. 

  187. 		 * 
    188. 

  188. 		 * @throws ArgumentError	If a non-<code>null</code> value is specified for the <code>overrideSaltELSKey</code>
    189. 

  189. 		 * 							parameter, and the value is an empty String (<code>""</code>)
    190. 

  190. 		 */
    191. 

  191. 		public function getEncryptionKey(password:String, overrideSaltELSKey:String=null):ByteArray
    192. 

  192. 		{
    193. 

  193. 			if (!validateStrongPassword(password))
    194. 

  194. 			{
    195. 

  195. 				throw new ArgumentError("The password must be a strong password. It must be 8-32 characters long. It must contain at least one uppercase letter, at least one lowercase letter, and at least one number or symbol.");
    196. 

  196. 			}
    197. 

  197. 			
    198. 

  198. 			if (overrideSaltELSKey != null && overrideSaltELSKey.length <= 0)
    199. 

  199. 			{
    200. 

  200. 				throw new ArgumentError("If an overrideSaltELSKey parameter value is specified, it can't be an empty String.");
    201. 

  201. 			}
    202. 

  202. 			
    203. 

  203. 			var concatenatedPassword:String = concatenatePassword(password);
    204. 

  204. 			
    205. 

  205. 			var saltKey:String;
    206. 

  206. 			if (overrideSaltELSKey == null)
    207. 

  207. 			{
    208. 

  208. 				saltKey = SALT_ELS_KEY;
    209. 

  209. 			}
    210. 

  210. 			else
    211. 

  211. 			{
    212. 

  212. 				saltKey = overrideSaltELSKey;
    213. 

  213. 			}
    214. 

  214. 			
    215. 

  215. 			var salt:ByteArray = EncryptedLocalStore.getItem(saltKey);
    216. 

  216. 			if (salt == null)
    217. 

  217. 			{
    218. 

  218. 				salt = makeSalt();
    219. 

  219. 				EncryptedLocalStore.setItem(saltKey, salt);
    220. 

  220. 			}
    221. 

  221. 			
    222. 

  222. 			var unhashedKey:ByteArray = xorBytes(concatenatedPassword, salt);
    223. 

  223. 			
    224. 

  224. 			var hashedKey:String = SHA256.hashBytes(unhashedKey);
    225. 

  225. 			
    226. 

  226. 			var encryptionKey:ByteArray = generateEncryptionKey(hashedKey);
    227. 

  227. 			
    228. 

  228. 			return encryptionKey;
    229. 

  229. 		}
    230. 

  230. 		
    231. 

  231. 		
    232. 

  232. 		// ------- Creating encryption key -------
    233. 

  233. 		
    234. 

  234. 		private function concatenatePassword(pwd:String):String
    235. 

  235. 		{
    236. 

  236. 			var len:int = pwd.length;
    237. 

  237. 			var targetLength:int = 32;
    238. 

  238. 			
    239. 

  239. 			if (len == targetLength)
    240. 

  240. 			{
    241. 

  241. 				return pwd;
    242. 

  242. 			}
    243. 

  243. 			
    244. 

  244. 			var repetitions:int = Math.floor(targetLength / len);
    245. 

  245. 			var excess:int = targetLength % len;
    246. 

  246. 			
    247. 

  247. 			var result:String = "";
    248. 

  248. 			
    249. 

  249. 			for (var i:uint = 0; i < repetitions; i++)
    250. 

  250. 			{
    251. 

  251. 				result += pwd;
    252. 

  252. 			}
    253. 

  253. 			
    254. 

  254. 			result += pwd.substr(0, excess);
    255. 

  255. 			
    256. 

  256. 			return result;
    257. 

  257. 		}
    258. 

  258. 		
    259. 

  259. 		
    260. 

  260. 		private function makeSalt():ByteArray
    261. 

  261. 		{
    262. 

  262. 			var result:ByteArray = new ByteArray;
    263. 

  263. 			
    264. 

  264. 			for (var i:uint = 0; i < 8; i++)
    265. 

  265. 			{
    266. 

  266. 				result.writeUnsignedInt(Math.round(Math.random() * uint.MAX_VALUE));
    267. 

  267. 			}
    268. 

  268. 			
    269. 

  269. 			return result;
    270. 

  270. 		}
    271. 

  271. 		
    272. 

  272. 		
    273. 

  273. 		private function xorBytes(passwordString:String, salt:ByteArray):ByteArray
    274. 

  274. 		{
    275. 

  275. 			var result:ByteArray = new ByteArray();
    276. 

  276. 			
    277. 

  277. 			for (var i:uint = 0; i < 32; i += 4)
    278. 

  278. 			{
    279. 

  279. 				// Extract 4 bytes from the password string and convert to a uint
    280. 

  280. 				var o1:uint = passwordString.charCodeAt(i) << 24;
    281. 

  281. 				o1 += passwordString.charCodeAt(i + 1) << 16;
    282. 

  282. 				o1 += passwordString.charCodeAt(i + 2) << 8;
    283. 

  283. 				o1 += passwordString.charCodeAt(i + 3);
    284. 

  284. 				
    285. 

  285. 				salt.position = i;
    286. 

  286. 				var o2:uint = salt.readUnsignedInt();
    287. 

  287. 				
    288. 

  288. 				var xor:uint = o1 ^ o2;
    289. 

  289. 				result.writeUnsignedInt(xor);
    290. 

  290. 			}
    291. 

  291. 			
    292. 

  292. 			return result;
    293. 

  293. 		}
    294. 

  294. 		
    295. 

  295. 		
    296. 

  296. 		private function generateEncryptionKey(hash:String):ByteArray
    297. 

  297. 		{
    298. 

  298. 			var result:ByteArray = new ByteArray();
    299. 

  299. 			
    300. 

  300. 			// select a range of 128 bits (32 hex characters) from the hash
    301. 

  301. 			// In this case, we'll use the bits starting from position 17
    302. 

  302. 			for (var i:uint = 0; i < 32; i += 2)
    303. 

  303. 			{
    304. 

  304. 				var position:uint = i + 17;
    305. 

  305. 				var hex:String = hash.substr(position, 2);
    306. 

  306. 				var byte:int = parseInt(hex, 16);
    307. 

  307. 				result.writeByte(byte);
    308. 

  308. 			}
    309. 

  309. 			
    310. 

  310. 			return result;
    311. 

  311. 		}
    312. 

  312. 	}
    313. 

  313. }
    314.