In today’s digital age, securing sensitive information like API keys, passwords, and user data is more critical than ever. A robust encryption and decryption strategy can prevent unauthorized access and ensure data confidentiality. In this blog post, we’ll explore how to encrypt and decrypt text using vanilla JavaScript, leveraging the Web Crypto API for a modern, secure approach.
Encryption transforms readable data (plaintext) into a scrambled format (ciphertext) that can only be read if decrypted with the correct key. This ensures that even if someone intercepts the encrypted data, it remains meaningless without the key. A solid encryption mechanism protects:
Let’s dive into how you can implement this securely in JavaScript.
We’ll use AES-GCM (Advanced Encryption Standard - Galois/Counter Mode), a modern standard that provides both encryption and integrity verification. The steps involve:
Here is the complete JavaScript implementation.
We’ll convert between ArrayBuffer and hexadecimal for easy data storage and retrieval:
function arrayBufferToHex(buffer) {
return [...new Uint8Array(buffer)]
.map(byte => byte.toString(16).padStart(2, '0'))
.join('');
}
function hexToArrayBuffer(hex) {
const bytes = new Uint8Array(hex.length / 2);
for (let i = 0; i < hex.length; i += 2) {
bytes[i / 2] = parseInt(hex.substr(i, 2), 16);
}
return bytes.buffer;
}
Use PBKDF2 to derive a strong encryption key:
async function getCryptoKey(password) {
const encoder = new TextEncoder();
const keyMaterial = encoder.encode(password);
return crypto.subtle.importKey(
'raw',
keyMaterial,
{ name: 'PBKDF2' },
false,
['deriveKey']
);
}
async function deriveKey(password, salt) {
const keyMaterial = await getCryptoKey(password);
return crypto.subtle.deriveKey(
{
name: 'PBKDF2',
salt: salt,
iterations: 100000,
hash: 'SHA-256'
},
keyMaterial,
{ name: 'AES-GCM', length: 256 },
false,
['encrypt', 'decrypt']
);
}
Encrypt text with a password:
async function encryptText(text, password) {
const encoder = new TextEncoder();
const salt = crypto.getRandomValues(new Uint8Array(16));
const iv = crypto.getRandomValues(new Uint8Array(12));
const key = await deriveKey(password, salt);
const encrypted = await crypto.subtle.encrypt(
{ name: 'AES-GCM', iv: iv },
key,
encoder.encode(text)
);
return {
cipherText: arrayBufferToHex(encrypted),
iv: arrayBufferToHex(iv),
salt: arrayBufferToHex(salt)
};
}
Decrypt text with the same password:
async function decryptText(encryptedData, password) {
const { cipherText, iv, salt } = encryptedData;
const key = await deriveKey(password, hexToArrayBuffer(salt));
const decrypted = await crypto.subtle.decrypt(
{ name: 'AES-GCM', iv: hexToArrayBuffer(iv) },
key,
hexToArrayBuffer(cipherText)
);
const decoder = new TextDecoder();
return decoder.decode(decrypted);
}
Let’s see how to use these functions:
function arrayBufferToHex(buffer) {
return [...new Uint8Array(buffer)]
.map(byte => byte.toString(16).padStart(2, '0'))
.join('');
}
function hexToArrayBuffer(hex) {
const bytes = new Uint8Array(hex.length / 2);
for (let i = 0; i < hex.length; i += 2) {
bytes[i / 2] = parseInt(hex.substr(i, 2), 16);
}
return bytes.buffer;
}
Encrypting sensitive information like API keys is a fundamental step in securing your applications. I use this for API keys mostly.
The above is the detailed content of Secure Text Encryption and Decryption with Vanilla JavaScript. For more information, please follow other related articles on the PHP Chinese website!
How to return to the homepage from an html subpage
The role of pycharm
How to solve error1
Introduction to shortcut keys for minimizing windows windows
Detailed explanation of oracle substr function usage
What platform is Kuai Tuan Tuan?
WiFi is connected but there is an exclamation mark
How to open mdf file
![[Web front-end] Node.js quick start](https://img.php.cn/upload/course/000/000/067/662b5d34ba7c0227.png)
